Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation

Who Me Too'd this topic

ASR nat problem

Ivan Denezhkin
Level 1
Level 1

‎01-24-2012 01:06 AM

Hello.

I use ASR as a branch router. It  terminate site-to-site ipsec tunnel.

    inside network ------------------- ASR------------------ipsec---------ASA--------inside2 network

        10.10.10.21        10.10.10.1   xx.xx.xx.xx                                  10.100.10.20  

10.10.10.21 is host in inside network

10.10.10.1 is inside ip address on asr

xx.xx.xx.xx is outside ip address on asr

10.100.10.20 is host in inside2 network  

Static nat have been configured on ASR

ip nat inside source static 10.10.10.21 yy.yy.yy.yy (yy.yy.yy.yy is not xx.xx.xx.xx)

Then i try to connect from 10.100.10.20 to 10.10.10.21 over ipsec connection is estableshed.

Why nat rule "ip nat inside source static 10.10.10.21 yy.yy.yy.yy" does not work for back packets?

1 person had this problem
0 Helpful
Who Me Too'd this topic