Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

site to site with same nside IPI

I am attempting to connect my Cisco 515E to a site to site VPN. The IP on the other side has the same IP # as my PIX. Will this be a problem?

2 REPLIES

Re: site to site with same nside IPI

YEAH . it will be a problem. You cannot have overlapping IP addresses on a site-to-site VPN. Your crypto ACLs cannot be defined if you have overlapping IP addresses. NAT the traffic at one end (preferably the destination) and then encrypt your traffic on the IPSEC.

Doing this, you can communicate between the LANs successfully. Hope this helps. rate replies if found useful. Let us know if you need more assistance on this.

Raj

Re: site to site with same nside IPI

oops. did i read the question wrong !!! if you have the PIX inside IP same at both the ends, i dont think you will have any issues. its the remote LAN subnet that matters the most here. PIX inside is anyway local to the locations, and does not come into picture for IPSEC connections.

Raj

125
Views
4
Helpful
2
Replies
CreatePlease to create content