I have 4 sites all currently connected together via cisco's IOS VPN. Each site is using public IP addresses internally. My question is, is it possible to use NAT on the inner networks at each location.
site 1 subnet = 192.168.1.0
site 2 subnet = 192.168.2.0
site 3 subnet = 192.168.3.0
site 4 subnet = 192.168.4.0
VPN Clients = 192.168.10.0
I also have a DMZ channel at site 1 that must use public IP addresses (no NAT) due to the web and email servers.
To throw a kicker in it, each site contains Novell 5.x servers that must communicate between themselves. No outside connection is required to internal NAT lans except via the VPN Clients. Since the routers will be doing the NAT and VPNs I don't see why this solution should not work.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...