NAT w Tunnel

I have a Cisco 2650 w 2 T-1 WICs and IOS 12.3. We have the internal FA0/1 doing overload NAT. Does anyone know if it is possible to also create a tunnel between this router and another Cisco? Is NAT and tunnelling mutually exclusive?

TIA Digital Doug

Reply to
Houston SBC
Loading thread data ...

Not mutually exclusive, No.

I don't know the details for IOS (and I understand it changed within the last 2 years or so); on Cisco PIX, the trick is that the ACL that designates the tunnel traffic must describe the traffic after NAT (for outgoing traffic) or before de-NAT (incoming traffic) -- essentially must match what would appear on the wire if the tunnels were not intercepting the packets and encapsulating them.

Reply to
Walter Roberson

I think with a site-to-site VPN you have to apply an access-list that denies your hosts from being NATd so they can cross the link to the other router.

Reply to
News

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.