Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
213
Views
0
Helpful
1
Replies

site to site vpn and PAT - help

carl_townshend
Spotlight
Spotlight

‎06-11-2009 01:21 AM

Hi all

Is it possible to have the source of my vpn tunnel as 1 address that has been overloaded? if so, how would I do this, cause normally you have to overload to an interface, would I do it to a pool of 1 address, or can I overload the tunnel address for the site to site tunnel? please advise.

thanks

Carl

Labels:
0 Helpful
1 Reply 1

Todd Pula
Level 7
Level 7

‎06-11-2009 06:21 AM

You can use PAT to hide the originating source IPs. Overloading can be achieved via interface, IP address, or range of addresses. You will need to make sure that your interesting traffic ACLs reference the post-NAT source address.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents