Cisco VPN Concentrator and NAT

Ok here is the setup, I have a current VPN tunnel established to another company using some other type of VPN appliance that is unable to do NAT. The need access to part of our network that overlaps with theirs. "Drawing" that might make no sense to anyone but me follows.

| Remote Company VPN Appliance | -> x x *VPN TUNNEL* x | Cisco VPN Concentrator |

* *
  • | Local Network ( |
  • (DS1 To Remote)
  • | Remote Network ( |

Ok so there is a machine in the remote network with the IP of that we need the remote company to get at. Obviously any IP coming from the remote company will be local to "Remote Network" thus I have to NAT it at our VPN Concentrator. Here is what I have done.

1) Setup a Network List for the "Local Network" configuration of the LAN-to-LAN VPN tunnel to include and

2) Setup a Network List for the "Remote Network" configuration of the LAN-to-LAN tunnel to include and *see below*. 3) Setup a NAT in the LAN-to-LAN NAT rules to translate the source of to when the destination network is, this was setup as a static (one to one) mapping.

So as of now I can ping an IP address on the Remote Companies side ( from the "Local Network", however in theory (or my theory) I should be able to ping from the Remote Network of Did I do something wrong or am I completely off on this?

Thanks in advance. Crawl

Reply to
Loading thread data ... Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.