troubleshooting Question

Cisco ASA 5505 Site-to-Site VPN with NAT using ASDM

Avatar of bwright1
bwright1 asked on
CiscoVPN
4 Comments1 Solution2356 ViewsLast Modified:
I've done many VPN setups using the ASDM Site-to-Site Wizard in the past.  But, a company we are trying to connect with now is requiring us to NAT our internal server IP to a public address they have provided.  I have searched to no avail on this and tried many configurations.  A walkthrough of the correct setup using the ASDM GUI would be appreciated.  I know nothing about using CLI and I would be scared I would mess something up and cause more problems.  It would be helpful for what to put into the VPN Wizard and then how to setup the NAT'ing.  Static NAT or Policy NAT?  Do I de-select NAT Exemption on the VPN Wizard screen? These are the issues I'm having with this.  If I haven't explained very well, please let me know of any additional info you may need to help me.  Thank You in advance.

My parameters: (fake addresses)
            Peer IP: 173.243.xxx.xxx
            Internal Server IP:  172.16.2.153 (needs to be NATed to 161.250.141.249 for traffic on TCP port 2004)

Company I'm connecting to:
            Peer IP: 161.250.81.xxx
            Encryption Domain:  162.250.140.1
ASKER CERTIFIED SOLUTION
asavener

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Log in to continue reading
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform for $9.99/mo
View membership options
Unlock 1 Answer and 4 Comments.
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
The Value of Experts Exchange in My Daily IT Life

Experts Exchange (EE) has become my company's go-to resource to get answers. I've used EE to make decisions, solve problems and even save customers. OutagesIO has been a challenging project and... Keep reading >>

Mike

Owner of Outages.IO
Phoenix, Arizona, United States
Member Since 2016
Join a full scale community that combines the best parts of other tools into one platform.
Unlock 1 Answer and 4 Comments.
View membership options
“All of life is about relationships, and EE has made a virtual community a real community. It lifts everyone's boat.”
William Peck

Member since 2004