Solved

NAT on Cisco Pix

Posted on 2009-05-17
3
246 Views
Last Modified: 2012-05-07
I have set a site to site VPN up which works fine however,  The other side say that they can see my private address.  They need to see me as my public address.
The tunnell will be used for FTP only and ALL traffic will start at my side (Only put).  
0
Comment
Question by:nigel_pettit
3 Comments
 
LVL 10

Accepted Solution

by:
lanboyo earned 125 total points
ID: 24408663
This is a somewhat difficult task, unless your addresses are already nated bfore they get to the pix. The interesting traffic list must be the same on both sides of the ipsec tunnel.
0
 
LVL 28

Assisted Solution

by:asavener
asavener earned 125 total points
ID: 24411356
You can NAT prior to encrypting, but you have to set it all up manually instead of using the VPN wizard in ASDM.
0
 
LVL 1

Author Comment

by:nigel_pettit
ID: 24416503
Thankyou very much for your comments.  I was forced to have the conference call today to address the problem.  To my suprise I managed to get it sorted as follows :  (All via GUI)
As previously told I already had a tunnel set up where my private IP was visable.
I added a static route for my private IP to translate to a spare public IP.  For a while it did not work.  I checked the exemptions and fond that when removing the exemption in the ipsec config it infact did not changed the config.  I removed the exemption from the translation rules screen and it started working.  how shocked was I.  Thanks a lot anyway guys,  I am NO cisco expert so I may not be able to help you guys but am grateful for your time
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Radius Debug Error 16 89
Getting locked out and can't access Cisco via the web 18 62
Line cards, Supervisor, Control plane 7 33
Setting up L2TP/IPsec in RRAS 5 14
Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now