Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

NATting across VPN link

We connect to a branch office network via an IPSec VPN. The branch office is curretnly NATting their own traffic out to the Internet, and I am wondering what it would take to configure the router to also NAT (to the Internet) for our traffic.

The branch office private network is, and our network is I'd like to route traffic up the VPN tunnel, and have it get NATted to the Internet from the other site. The current relevant router config on the branch office end:

interface FastEthernet0

ip nat outside

ip address

interface Vlan1

ip nat inside

ip address

ip route permanent

ip nat inside source route-map SDM_RMAP_1 interface FastEthernet0 overload

access-list 101 deny ip

access-list 101 permit ip any

route-map SDM_RMAP_1 permit 1

match ip address 101

I've tried a few things already, including adding to access-list 101, but no success. Thanks experts!

Community Member

Re: NATting across VPN link

Hi, can you clear your objective. I have read the configuration, but want to know ur intension.

Community Member

Re: NATting across VPN link

The intention is to have the router at the other end of the VPN tunnel, to NAT traffic from my network out to the Internet.

- We have already established an IPSec VPN. Our network is and the remote network is

- The remote network NATs traffic out to the Internet for their own network.

- We would also like to be able to NAT out the remote router to the Internet.

- This is due to business reasons - some traffic must be sourced from the branch office, and not the primary location.


The goal is to NAT MYNET traffic out of RTRB. How could I do this? RTRB is already NATting traffic for BRANCH to the Internet. Thanks!

CreatePlease to create content