cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
209
Views
0
Helpful
1
Replies

NAT on VPN 3005

cjpelton
Level 1
Level 1

I'm trying to put a DB/File server on one (the private) side of my VPN and still allow the rest of the VLAN on the public side access to these services, without requiring a tunnel. Is this possible? In other words, we only need the VPN for people off site, but would still like to allow unregulated local access. I thought this would be possible with NAT, but it looks like maybe I need something else as well?

Thanks,

Chris

1 Reply 1

gfullage
Cisco Employee
Cisco Employee

Did you remove the Public filter from the Public interface? This filter is on by default and only allows encrypted packets into the Public interface.

Other than that, as long as the external PC's have a route for the inside network that points to the Public IP address of the 3000, then traffic should flow from outside to inside just fine (I just tested this on my 3000 and it works fine).

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: