• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 860
  • Last Modified:

Setting up NAT or PAT on VPN 3005

I have a LAN to LAN tunnel that I am setting up.
My site A has local host ( - - ) in the NETWORK LIST.
My site B has local host ( ) in the NETWORK LIST.

I want to hide site A's local host from site B's local host using NAT or PAT.
what should I do on Site A VPN 3005 concentrator to set this up.
I am not really familiar with the setup that is on the VPN 3005 so please give me a step by step.
1 Solution
For this example, I will use the following NAT settings:

Site A IP's
------------- will be translated to will be translated to will be translated to

First, you'll need to setup your LAN-to-LAN NAT rules.  From the VPN Concentrator management GUI, go to "Configuration - Policy Management - Traffic Management - NAT - LAN-to-LAN Rules" and then click the "Add" button.  For the first IP address (, fill out the screen as shown below and click the "Add" button when complete:

Repeat this process for the other 2 IP addresses, substituting the appropriate IP addresses for each, but always specify for the remote network and for the remote network wildcard mask.

Next, you will need to make sure that you're LAN-to-LAN tunnel definition has the TRANSLATED address for the local network setting.  The translated address would be the, and in this example.  You will need to create a network list to use to specify these three IP addresses for the local network.  To do this, go to "Configuration - Policy Management - Traffic Management - Network Lists" and click "Add".  Type in a List Name, and fill out the screen as shown in the second screenshot below.

Finally, go into your LAN-to-LAN rule ("Configuration - Tunneling and Security - IPSEC - LAN-to-LAN") by selecting the rule and clicking "Modify".  At the bottom of the next screen, change the Local Network and Remote Network settings so that they look like the 3rd screenshot below.  Click "Apply" and that should be it.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now