Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

Site to Site VPN and Encryption Domain


The aim is to set up site to site VPN with a vendor. That is not an issue. The question that I am not familiar is setting up encryption domain in this particular scenario.

The vendor has to manage our device that has private IP address (10.x) but for them that is an overlapping network as they also use same private IP address in their own network. They want a public routable IP address for them to send traffic to over the VPN tunnel. The tunnel terminates on a device that sits inside our network. The question is how do i define the interesting traffic and change the destination address in the incoming packet. If my public routable address is that the vendor will be sending traffic to, what do I need to configure on my VPN terminating 2811 router that incoming packets targeted for this IP address are actually translated and sent to

Thanks for your help. Let me know if additional information is needed that I missed out on explaining.

CreatePlease to create content