Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Site to Site VPN with internal subnet conflict

I am trying to establish a new IPSEC tunnel between my 515E (version 6.3 (4)) and a customer's Sonicwall SOHO3/10 Firmware: 6.4.2.0. We both have a 192.168.1.x subnet. Their 192.168.1.x network must talk to my 192.168.14.x network. Any recommendations on how to NAT on my 515E or the Sonicwall to eliminate routing problems on my network?

1 REPLY
Bronze

Re: Site to Site VPN with internal subnet conflict

Hi,

Hope your 192.168.14.0/24 subnet is not clashing with the remote side.

In this case, you can look at doing a DNAT in the PIX

static (outside, inside) x.x.x.0 192.168.1.0 NETMASK 255.255.255.0

Pls note that although you will be accessing x.x.x.0 from your LAN instead of 192.168.1.0, the crypto acl will remain the same

access-list xx permit ip 192.168.14.0 255.255.255.0 192.168.1.0 255.255.255.0

HTH

Regards,

Shijo George.

413
Views
5
Helpful
1
Replies
CreatePlease to create content