Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 387
  • Last Modified:

Cisco cryptomap VPN *with* NAT

Ok, normally when we create crypto map VPNs we dont want NAT to take place. In this case, I need to perform NAT hide behind a single IP address across the VPN connection.

How is this achieved with a cryptomap VPN? Im pretty sure I could do it no problem with a GRE tunnel based VPN.
0
Klinkeye
Asked:
Klinkeye
  • 2
1 Solution
 
alienXenoCommented:
You can applu "ip nat oustside and "crypto map" on your WAN connectio nand use "ip nat isnide" on the LAN interface. You will then need to defin NAT POOL which will have aCL that will define which traffic needs to be NATted.
0
 
KlinkeyeAuthor Commented:
So is the order in packet processing something like this:
ACL > NAT > VPN ENCAPSULATION > ROUTING ?
0
 
KlinkeyeAuthor Commented:
Was close to the final solution. A little more config was required in my case.
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now