On a PIX 515 6.3(5) I currently have an IPSec VPN configured with no-nat, using all public IPs internally and on the remote. Can I add two hosts to the encryption domain that have private IP's and NAT them to the Public IP in the the same Crypto Map? What commands would be involved in this?
access-list ipsectraffic_boston permit ip host PublicIP11 host PublicIP1
access-list ipsectraffic_boston permit ip host PublicIP22 host PublicIP2
access-list outside2_outbound_nat0_acl permit ip host PublicIP host PublicIP
crypto map mymap 305 match address ipsectraffic_boston crypto map mymap 305 set peer IPAdd. crypto map mymap 305 set transform-set ESP-3DES-SHA crypto map mymap 305 set security-association lifetime seconds 86400 kilobytes 4608000
I'd like to add two private IP to the "access-list ipsectraffic_boston" and have it NAT to a public IP, as the remote site is requesting I NOT use private IP's. Doing this would save the effort to add a Public IP to my internal host.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...