Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN L2L Source NAT- Design.

Hi All,

Faily new to configuring VPN and I have been asked to put a design together, so calling all those security gurus.

To give a 10,000 foot view to the issue Ive have been handed.

We have had a merger between us (Company A) and another company (Company B).

In Company A we are utilising Class A 10.0.0.0/8 addressing. The company which we have merged with (Company B) have an address range of 10.128.0.0/9 and 10.96.0.0/11.

Obviously we have conflicts here, so I have been looking at VPN solution with source NAT at either end but I have been scratching my head as to what the best design would look like.

I have been informed that 2 way communication would be preferred

Does anyone have any ideas on a design which could be utilised in this situation?

Any help would be appreciated.

Thanks again.

Everyone's tags (3)
1 REPLY

Re: VPN L2L Source NAT- Design.

Quick question out of the 10/8 are you using all of the 16 million addresses??. If not - you need to work out how many subnets you are using, you know how many they are using ... 1 /9 and 1/11 looks like the other company implemented a planned ip subnet design.

Then I think the easiest thing you should do is nat on a summary boundary.

Jmtpw

Sent from Cisco Technical Support iPad App

413
Views
0
Helpful
1
Replies