Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAT

I am in the situation where i can not have more than 1 Static IP address on one of my branch offices, and the possible soution with available hardware is going to be look like this,

INTERNAL SWITCH(OFFICE LAN) 10.250.1.0/24

|

|

CISCO ASA 5510 (NAT/PAT/VPN)

|

|

CISCO 1841

|

|

-------INTERNET--------

|

|

Cisco 837(NAT)public IP address

|

|

Watchgaurd X15 (VPN/NAT)

WAN PORT: 192.168.0.254

INTERNAL: 10.250.2.254

|

|

INTERNAL SWITCH(Office LAN 10.250.2.0/24)

A SITE TO SITE VPN tunnel needs to be establish between CISCO ASA in HEADOFFICE and WATCHGAURD in BRANCHOFFICE, Can anyone have a look to see if this will work without any problems, primarily the branch office will run CITRIX sessions over the VPN.

1 REPLY
Silver

Re: NAT

If you are doing internal authentication for example:

Configuration | User Management | Users | Modify

Define the ip address and subnet mask for this particular user under the identity tab.

Configuration | System | Address Management | Assignment

Check the option for: Use Address from Authentication Server.

84
Views
0
Helpful
1
Replies