Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

NAT IP-SEC VPN Problen

I have an 871W

Site to Site IP_SEC VPN is set up and working with a remote Linksys BEFDX41 router.

Easy VPN Server is also set up and working

Problem :

Traffic from the Remote site over the site-to-site VPN works

BUT if I add a static NAT entry on the public interface mapping to an internal IP (eg : route port 80 to an internal server) - traffic to that port times out on the remote side.

3 REPLIES
Community Member

Re: NAT IP-SEC VPN Problen

HI Try this below command and let me know

Ip nat source static ( internal server ip ) ( public external IP )

Community Member

Re: NAT IP-SEC VPN Problen

Sorry - no go on that one ... same result

As soon as I remove the NAT rule, ti's ok

Hall of Fame Super Blue

Re: NAT IP-SEC VPN Problen

Could you provide more details ie.

when it works what IP address are you connecting from and to what IP address are you connecting.

When it doesn't work what IP address are you connecting from and to what IP address are you connecting.

What do your crypto acls look like ie. if you map an internal server to a different IP are you then including new IP in your crypto map acl ?

Jon

129
Views
0
Helpful
3
Replies
CreatePlease to create content