I have a client whith two offices connected by a site to site VPN between two PIX 501's with IOS 6.3(1). Office-A has local address range 192.168.101.0/24 and Office-B has local address range 192.168.120.0/24. The client also has a telephone system, installed and maintained by a 3rd party, and this system is accessed via ISDN into Office-A by the 3rd Party support company. It behaves just like a router. The issue is that, when the telco accesses their telephone equipment in Office-A they get an IP address which is not on the local address range (it is issued by their system), eg 10.10.10.14/24 and they cannot access their equipment in Office-B over the VPN.
We have attempted to alter the PIX configs to be aware of the 10.10.10.0 addresses with static routes etc, but the VPN is confusing the issue. We need to know how to make the PIXes direct the traffic from the 3rd network (10.10.10.0) to and from the local networks at each end of the VPN.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...