CISCO ASA Site to Site VPN with double NAT
Posted on 2014-01-20
I'm trying to setup a site to site VPN between two Cisco ASA 5505:
On Site A, the ASA get a public routable IP.
On Site B, the ISP router has one public routable IP and one non-routable IP. The ASA outside ip points to the router non-routable IP.
On both sites I setup the remote public IP and the remote network. As viewed in logs, site B can send data to site A, but site A cannot send data to site B.
18.104.22.168 -- router static public ip
192.168.254.1 - ASA outside ip
192.168.34.1 - ASA inside ip
How can I configure the ASA to bypass the ISP router NAT?