Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA Site-to-Site VPN to SonicWall Overlapping Networks

Need to setup a VPN from my ASA 5510 to remote SonicWall TZ170 with overlapping networks, both are 192.168.1.0/24.

One server on my end, 192.168.1.76, needs to receive data from their end PC which is 192.168.1.105.

I understand NAT will be needed on both ends, they are willing to do so.

Simple diagram:

My Server            My Outside                                  Remote Outside        Remote PC

192.168.1.76 ----- 76.7.102.254 <-----> Internet <-----> 66.122.221.254 ----- 192.168.1.105       

I would like to use 172.6.1.76 as the NATted address on my side.

Everyone's tags (3)
1 REPLY
Cisco Employee

ASA Site-to-Site VPN to SonicWall Overlapping Networks

for ASA version 8.2 and earlier:

access-list nat-to-sonicwall permit ip host 192.168.1.76 host

static (inside,outside) 172.16.1.76 access-list nat-to-sonicwall

i assume that there is typo in your address: instead of 172.6.1.76, i assume it's 172.16.1.76?

and sonicwall should also NAT their address to a unique adress.

Crypto ACL should be from the NATed address to the sonicwall NATed address

Hope that helps.

843
Views
0
Helpful
1
Replies
CreatePlease to create content