Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

NAT behind NAT

I am in the situation where i can not have more than 1 public IP address in one of my branch offices, and the possible soution with available hardware is going to be look like this,

INTERNAL SWITCH(OFFICE LAN) 10.250.1.0/24

|

|

CISCO ASA 5510 (NAT/PAT/VPN)

|

|

CISCO 1841

|

|

-------INTERNET--------

|

|

Cisco 837(NAT)public IP address

|

|

Watchgaurd X15 (VPN/NAT)

WAN PORT: 192.168.0.254

INTERNAL: 10.250.2.254

|

|

INTERNAL SWITCH(Office LAN 10.250.2.0/24)

A SITE TO SITE VPN tunnel needs to be establish between CISCO ASA in HEADOFFICE and WATCHGAURD in BRANCHOFFICE, Can anyone have a look to see if this will work without any problems, primarily the branch office will run CITRIX sessions over the VPN.

1 REPLY
New Member

Re: NAT behind NAT

Hi Msubtain,

the connections look fine, and i dont see any problems my self, so far. Why dont u go ahead with the configs and fire a live pkt within the production network, and see the result. The routing appears fine as per your sketch.

Give feed back on the connections

regards

Kiniti.

102
Views
0
Helpful
1
Replies
CreatePlease to create content