02-24-2010 12:26 PM
I have PIXA (192.168.27.0) connecting to PIXB (192.168.1.0) with a VPN. I would like to NAT the PIXB network to 10.10.1.0 when it connects to PIXA, so that when I do a "sh ipsec sa" on PIXA it shows the remote ident as 10.10.1.0 instead of 192.168.1.0. I have attached my PIXB config. Would somebody mind looking it over and telling me what I am doing incorrectly? Thanks for any ideas.
Solved! Go to Solution.
02-24-2010 09:56 PM
1. remove "nat (inside) 0 access-list NO-NAT"
2. change acl 90 to "access-list 90 permit ip 10.20.1.0 255.255.255.0 192.168.27.0 255.255.255.0"
3. change ACL on the other end as well.
02-24-2010 09:56 PM
1. remove "nat (inside) 0 access-list NO-NAT"
2. change acl 90 to "access-list 90 permit ip 10.20.1.0 255.255.255.0 192.168.27.0 255.255.255.0"
3. change ACL on the other end as well.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide