Hi all,
till now I always used route-map on NAT rule to avoid translations of traffic directed to the other LAN through a VPN tunnel. But route-map section has only a match rule to an ACL.
I've been applying that method as an external consultant told us but now I would ask you if the same result will be obtained using simply an ACL instead of a route-map.
So below follows the real configuration
ip nat inside source route-map vpn_2hq interface Dialer0 overload .... route-map vpn_2hq permit 10 match ip address 131 .... access-list 131 deny ip 10.134.3.0 0.0.0.255 192.168.31.0 0.0.0.255 access-list 131 permit ip 10.134.3.0 0.0.0.255 any
but should the next one be correct as well?
ip nat inside source list 131 vpn_2hq interface Dialer0 overload .... access-list 131 deny ip 10.134.3.0 0.0.0.255 192.168.31.0 0.0.0.255 access-list 131 permit ip 10.134.3.0 0.0.0.255 any
Alex.