Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
321
Views
0
Helpful
1
Replies

NAT for VPN with only 1 eth-if

jc
Level 1
Level 1

‎03-07-2002 05:52 AM - edited ‎02-21-2020 11:38 AM

We are running a Router behind a NAT-Firewall. The Router has 1 eth-if and several BRI / Ser.

There is a private IP-Addr. on the eth-if.

I would like to do a VPN with a customer where all Packets seem to be comming from one public IP which belongs to me.

I though of something like

ip nat inside source list xxx interface Loopback1 overload

with lo1 being one of my public IPs.

Problem is:

Where to put the IP NAT INSIDE and OUTSIDE ?!?!?

The Traffic is running over the eth-if ONLY !

And ideas ?

Labels:
0 Helpful
1 Reply 1

lisa.hall
Level 2
Level 2

‎03-13-2002 12:53 PM

You’ll probably have to create sub-interfaces but (not fully understanding the topology) I don’t think you’ll get the firewalling/security you want without the physical interfaces. You should work with TAC to be sure you set this up securely.

0 Helpful
Customers Also Viewed These Support Documents