?
Solved

NAT on Cisco Pix

Posted on 2009-05-17
3
Medium Priority
?
252 Views
Last Modified: 2012-05-07
I have set a site to site VPN up which works fine however,  The other side say that they can see my private address.  They need to see me as my public address.
The tunnell will be used for FTP only and ALL traffic will start at my side (Only put).  
0
Comment
Question by:nigel_pettit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 10

Accepted Solution

by:
lanboyo earned 375 total points
ID: 24408663
This is a somewhat difficult task, unless your addresses are already nated bfore they get to the pix. The interesting traffic list must be the same on both sides of the ipsec tunnel.
0
 
LVL 28

Assisted Solution

by:asavener
asavener earned 375 total points
ID: 24411356
You can NAT prior to encrypting, but you have to set it all up manually instead of using the VPN wizard in ASDM.
0
 
LVL 1

Author Comment

by:nigel_pettit
ID: 24416503
Thankyou very much for your comments.  I was forced to have the conference call today to address the problem.  To my suprise I managed to get it sorted as follows :  (All via GUI)
As previously told I already had a tunnel set up where my private IP was visable.
I added a static route for my private IP to translate to a spare public IP.  For a while it did not work.  I checked the exemptions and fond that when removing the exemption in the ipsec config it infact did not changed the config.  I removed the exemption from the translation rules screen and it started working.  how shocked was I.  Thanks a lot anyway guys,  I am NO cisco expert so I may not be able to help you guys but am grateful for your time
0

Featured Post

Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Suggested Courses

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question