Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

site to site vpn and PAT - help

Hi all

Is it possible to have the source of my vpn tunnel as 1 address that has been overloaded? if so, how would I do this, cause normally you have to overload to an interface, would I do it to a pool of 1 address, or can I overload the tunnel address for the site to site tunnel? please advise.

thanks

Carl

1 REPLY

Re: site to site vpn and PAT - help

You can use PAT to hide the originating source IPs. Overloading can be achieved via interface, IP address, or range of addresses. You will need to make sure that your interesting traffic ACLs reference the post-NAT source address.

112
Views
0
Helpful
1
Replies
CreatePlease to create content