Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Policy NAT for traffic coming from VPN L2L

Status
Not open for further replies.
Jul 2, 2010
32
PE
Hi,



Im trying to configure a policy nat for traffic coming from a VPNL2L. I would like to know if this scenario is supported on a Cisco ASA IOS version 9.1(2)



We have a VPN L2L for different customers, one of them has an overlaping with our internal network, we need to nat a specific host from their network to an inside private ip



Interestering traffic

source (this is the network from customer)

10.10.10.0/24

10.10.20.2/32



destination (this network is in our end) - inside interface of our firewall

20.20.20.0/24

NAT IP address 20.20.30.2



I has been trying to nat this host 10.10.20.2/32 to 10.10.20.2/32 using:



object network obj-10.10.20.2

host 10.10.20.2

object network obj-20.20.30.2

host 20.20.30.2

object network obj-20.20.20.0

subnet 20.20.20.0



nat (outside,inside) source static obj-10.10.20.2 obj-20.20.30.2 destiation static obj-20.20.20.0 obj-20.20.20.0



but the translation is not working., there are no hits for nat (outside,inside)



There is no ACL on the interfaces ( there are only 2: inside security level 100, outside security level 0)



Thanks.



Luis.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top