Hello,
I've a general concept of routing down, and some cisco under my belt, but I'm having to do something I've never done before.. One of those if you mess it up, you are SOL. :)
I have two connections: one internet, and one MPLS. I am trying to create an IPSEC tunnel over the MPLS, but since my outside interface is a publicly routeable address, I can't get to the private address on the other side of the MPLS circuit, because it's sourced with my public address. So what I'm considering doing is adding a NAT to my router which will basically say:
If the source is 4.3.2.1 (outside address on the ASA) and going to
192.168.0.1 (remote ASA), NAT the source as being 10.0.0.1.Is this possible, advisable, etc? If it is possible and not so far out there, can someone please point me in the direction of where to find information on this? The catch is that I definitely do NOT want to NAT the 4.3.2.1 address when going out to the internet.
Any information would be appreciated.
Thank you.