Ok i have the following configuration. One asa 5540 is the vpn server and through site to site vpn's some cisco 2811 routers connect to it. All cisco routers have the same ip in their internal interface so i am nat'ing them to another ip to connect to the vpn. The same goes for the servers behind. So we have
ip nat inside source static 10.0.10.10 10.1.89.10
ip nat inside source static 10.0.10.30 10.1.89.30
Where .10 is the server and .30 is the router. The vpn comes up and i can pint from the server to my internal network lets say to server 10.0.20.10. From server 10.0.20.10 i can ping both the nat'ed ip's. However i cannot ping 10.0.20.10 from the routers. Also i try pinging 10.1.89.10 on the router and it pings fine. On the other hand pinging 10.1.89.30 does not when 10.0.10.30 does. PLEASE HELP. I need the router to be able to communicate with 10.0.20.10 sever.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...