Hi, all , heres is the issue and i cand find the solution.
Well i have the tipic scenario o f a vpn, first were trying to make a VPN tunnel from a central site, to another point in colombia, we are using a Cisco 1801 (MPC8500) processor (revision 0x400) with 236544K/25600K bytes of memory. & Cisco IOS Software, C180X Software (C180X-ADVIPSERVICESK9-M), Version 12.4(15)T7.
an the other side of the vpn tunnel is a Checkpoint, i ignore other details about that equipment, and they ask to us that we send our traffic with an ip source of our Public IP, so, no problem in our acl we cipher trafic with our public ip addres,going to the private addressing, and we send it in the ipsec tunnel, so no big deal, we are using PAT, with a Fa0 (inside 10.200.150.0/24) to a Di1(ADSL, outside Static Address), so no problem here, but then they ask to us to configure a VPN client for cisco, so we do the dynamic map, and so on, it work, clients want to access to Site LAN (vpn ip pool is 10.200.151.1 - 25 ) and it works too, but then they want to get the traffic going from a vpnClient going to another point in the l2l tunnel, to colombia, but, we must NAT that trafic, in order to reach the other point but if the traffic is entering the router, in an outside interface, how can we NAT that traffic to go out the tunnel to colombia. ive been reading like 2 weeks in cisco sites, forums, experts exchange and so on, and i havent found an answer yet, i've found DMVPN, and our case is like a HUB enviroment,but all the examples are using Private addressing, and none nats on a VPN tunnel, and i cant found a solution, any help will be appreciated
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...