Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1174
Views
0
Helpful
1
Replies

ASA Site-to-Site VPN to SonicWall Overlapping Networks

wcotis60
Level 1
Level 1

‎07-02-2012 03:13 PM

Need to setup a VPN from my ASA 5510 to remote SonicWall TZ170 with overlapping networks, both are 192.168.1.0/24.

One server on my end, 192.168.1.76, needs to receive data from their end PC which is 192.168.1.105.

I understand NAT will be needed on both ends, they are willing to do so.

Simple diagram:

My Server            My Outside                                  Remote Outside        Remote PC

192.168.1.76 ----- 76.7.102.254 <-----> Internet <-----> 66.122.221.254 ----- 192.168.1.105       

I would like to use 172.6.1.76 as the NATted address on my side.

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎07-02-2012 07:58 PM

for ASA version 8.2 and earlier:

access-list nat-to-sonicwall permit ip host 192.168.1.76 host

static (inside,outside) 172.16.1.76 access-list nat-to-sonicwall

i assume that there is typo in your address: instead of 172.6.1.76, i assume it's 172.16.1.76?

and sonicwall should also NAT their address to a unique adress.

Crypto ACL should be from the NATed address to the sonicwall NATed address

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents