Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

NAT on Cisco Pix

Posted on 2009-05-17
3
Medium Priority
?
255 Views
Last Modified: 2012-05-07
I have set a site to site VPN up which works fine however,  The other side say that they can see my private address.  They need to see me as my public address.
The tunnell will be used for FTP only and ALL traffic will start at my side (Only put).  
0
Comment
Question by:nigel_pettit
3 Comments
 
LVL 10

Accepted Solution

by:
lanboyo earned 375 total points
ID: 24408663
This is a somewhat difficult task, unless your addresses are already nated bfore they get to the pix. The interesting traffic list must be the same on both sides of the ipsec tunnel.
0
 
LVL 28

Assisted Solution

by:asavener
asavener earned 375 total points
ID: 24411356
You can NAT prior to encrypting, but you have to set it all up manually instead of using the VPN wizard in ASDM.
0
 
LVL 1

Author Comment

by:nigel_pettit
ID: 24416503
Thankyou very much for your comments.  I was forced to have the conference call today to address the problem.  To my suprise I managed to get it sorted as follows :  (All via GUI)
As previously told I already had a tunnel set up where my private IP was visable.
I added a static route for my private IP to translate to a spare public IP.  For a while it did not work.  I checked the exemptions and fond that when removing the exemption in the ipsec config it infact did not changed the config.  I removed the exemption from the translation rules screen and it started working.  how shocked was I.  Thanks a lot anyway guys,  I am NO cisco expert so I may not be able to help you guys but am grateful for your time
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question