Advertisement

06.04.2008 at 08:57PM PDT, ID: 23459093
[x]
Attachment Details

Hiding NAT from customer

Asked by Rome68 in Virtual Private Networking (VPN), Networking Hardware Firewalls, Cisco PIX Firewall

Tags: Cisco, ASA, 5520, Bi-driectional NAT (hiding NAT)

I have a VPN tunnel between an ASA 5520 and a 5505.
The 5505 is at a customer site and the 5520 is ours.  The customer would like to deploy some equipment at our site and they are very specific about what IP addresses they want to use.  Problem is, we can not use that subnet for the tunnel.  How can I set up NAT on the ASA's so that the customer would be able to see their devices on the IP's that they want?
For example, if they insist that one of their devices is 10.1.1.3 / 24 and their network (behind the 5505) is 10.2.1.1, they would be able to ping 10.1.1.3 from the 10.2.1.1 address.  Yet the 10.2.1.1 address would be NAT'd as well as the 10.1.1.3 address?
I hope this is not too confusing.Start Free Trial
[+][-]06.05.2008 at 05:09PM PDT, ID: 21725117

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]06.06.2008 at 07:09PM PDT, ID: 21733915

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]06.07.2008 at 02:46AM PDT, ID: 21734888

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]06.08.2008 at 09:49PM PDT, ID: 21741054

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Virtual Private Networking (VPN), Networking Hardware Firewalls, Cisco PIX Firewall
Tags: Cisco, ASA, 5520, Bi-driectional NAT (hiding NAT)
Sign Up Now!
Solution Provided By: Rome68
Participating Experts: 1
Solution Grade: A
 
 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628