Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN Help required

I have a situation where I need to setup a VPN L2L tunnel. The peer is using Checkpoint NG and I am using a PIX 515 (Code: 6.2(2))

Now my problem is the following:

The peer (Checkpoint end) needs us to 'hide'our LAN address (our LAN address is on a 10.x.x.x subnet) so that it can communicate with their internal LAN. The Checkpoint side will only allow us to communicate with them if we 'hide' our LAN side IP address.

Now my question is:

How can I setup the VPN tunnel so that when traffic goes out from my LAN to the Checkpoint it gets NAT'ed to a internet routable IP (which I have).

I hope the above explanation is clear but if you require further information then please let me know.

Any help/advice on this will be very much appreciated, I would really be grateful if someone can post configuration examples

Many thanks.

New Member

Re: VPN Help required

See : VPN and NAT : topic bellow

Re: VPN Help required


As far as I understand from your post is that you are struck with a situation where in you want to establish a VPN to an organization which also uses the same IP Address Space as you do.

Now if this is the situation, you may configure the VPN Tunnel along with NATting as explained in the Overlapping Networks.

Though Cisco Supports this type of Overlapping NATted Networks, however I'm not sure with CheckPoint NG.

Below are two links which shows how to configure IPSec Tunnel between NG and PIX and NATting between overlapped network, respectively.

Please feel free to revert back if any more queries.

Kind Regards,

Wilson Samuel

PS: Please rate if it helps

CreatePlease login to create content