Access from remote-VPN through ASA 5510 to s2s-VPN with NAT
I have the following Problem:
Remote-Users, who are connectet to our ASA 5510 via cisco-client, should be able to access a Server over a s2s-tunnel to another asa.
The remote-users are in the network 172.16.10.0/24 and can access our local lan 192.168.0.0/19 without problems.
the network at the s2s-Partner is 10.10.10.0/25.
The problem here is, that they only route 192.168.24.0/24 for us. (yes, one piece from our local network).
what we are doing for internal users is to pat the outgoing connections through this tunnel to 192.168.24.254.
The Problem is, that I do not know where to nat the network from the remote-users from 172.16.10.0 to an address in the 192.168.24.0-Segment to access the Servers via the l2l-tunnel or if it is even possible to get from one vpn to another with natting in between.
We do not nat the remote-addresses to access the local network.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...