ip nat inside source list 1 interface FastEthernet4 overload
access-list 1 remark local
access-list 1 permit 188.8.131.52 0.0.0.255
access-list 100 permit ip 184.108.40.206 0.0.0.255 192.168.3.0 0.0.0.255
access-list 100 permit ip 220.127.116.11 0.0.0.255 192.168.4.0 0.0.0.255
The thing is that when I apply the local access list, lo let the 18.104.22.168 hosts access the internet, I can't reach the other end of the tunnel. ( Say ping to 192.168.3.35 ). When I disable the local access list : access-list 1 permit ip 22.214.171.124 0.0.0.255, the tunnel works. I can access the other end of the tunnel from any of the hosts at 126.96.36.199, but I don't have internet access. Can somebody explain what is happening and how to solve it ? Thank you.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...