On an 837 IOS 12.4 I want to nat the inside source depending on the destination.
Internet with normal PAT overload (also with static ports for incoming smtp and web)
So far so good.
IPsec tunnel. Devices on the remote end of the IPsec tunnel need to also initiate connections in to the local devices.
I can get Destination 2 working with a nat inside source route-map and nat pool but of course as it's a dynamic translation the remote tunnel devices can't initiate connections in. So I need a static nat for Destination 2?
A network static for tunnelled traffic does the trick in both directions nicely. But it NATs the inside sources for ALL destinations... not so nice.
I think I need a feature like a network static but with route-map selection for fine-grained control. Does such a feature exist?
I can't see a solution for this. Can someone prove me wrong please?!
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...