Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

site-to-site VPN with nat static on ASA 5515X Version 8.6(1)2

Hi,

We would like to configure site-to-site VPN between 2 sites.

the IP address used in the 2 sites are the same, so we need to nat our internal IP address when it communicates to the peer.

we use ASA 5515X, with IOS version 8.6(1)2

we tried the following configuration but it does not work.

object-group network Obj_LAN

network-object IP_LAN

object network Obj_LAN_Peer

subnet IP_LAN_Peer

object-group network Obj_LAN_NAT

network-object IP_LAN_NAT

nat (inside,outside) source static Obj_LAN Obj_LAN_NAT destination static Obj_LAN_Peer Obj_LAN_Peer

access-list VPN_ACL extended permit ip object-group Obj_LAN_NAT object-group Obj_LAN_Peer.

Could anyone please help?

1 REPLY
Super Bronze

site-to-site VPN with nat static on ASA 5515X Version 8.6(1)2

Hi,

You posted the same thing on the Firewall section of CSC too.

I posted a reply in that other discussion.

- Jouni

113
Views
0
Helpful
1
Replies