Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

Source Address (NAT) L2L tunnel

I am currently setting up a L2L tunnel, I need all traffic from my site to get translated to an address before it traverses the tunnel. All VPN traffic from my site will be coming only from one device.

Traffic internally will be coming from, I need this to get translated to before it traverses the tunnel. I do not want this to affect internet traffic. I know on the ASA's you do policy NAT, but what procedure

do you following on an 1841 router?

I have attached the necessary pieces of the configuration.

Thanks in advance,



Re: Source Address (NAT) L2L tunnel

AFAIK - there is no direct policy nat available, but you could try something. Try using a route map, with a nat statement using a pool of addresses - but the pool only have 1 address, something like:-

ip nat pool test1 x.x.x.x x.x.x.x netmask

ip nat inside source route-map test pool test1

access-list 101 permit ip host y.y.y.y host z.z.z.z

route-map test permit 10

match ip address 101

access-list 102 permit ip host x.x.x.x host z.z.z.z

crypto map vpntunnel

match address 102

x.x.x.x - translated IP address

y.y.y.y - original IP address

z.z.z.z - remote end IP address for VPN tunnel


CreatePlease to create content