Hi I have a network that is protected by a PIX 515e running 6.3(1). I was asked to setup a IPSEC VPN with a partner. The partner's security policy mandates that a remote encryption domain must use IP addresses on a subnet carved out of their overall IP network range. The network behind my PIX uses IP addresses on a subnet that is outside of their IP network. Adding a second IP to my network isn't supported by the PIX OS. To bypass this limitation I thought of NATing packets going into the VPN tunnel. I've been looking for documentation for such a scenario, but can't find anything. Can packets going into a VPN tunnel be NATed? TIA Paolo _______________________________________________ firewall-wizards mailing list firewall-wizards@listserv.icsalabs.com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: [fw-wiz] Pix 535 Logging, Paul Melson |
|---|---|
| Next by Date: | Re: [fw-wiz] bypassing PIX limitation, Horvath, Kevin M. |
| Previous by Thread: | Re: [fw-wiz] firewall-wizards Digest, Vol 7, Issue 4, Tedeski, William |
| Next by Thread: | Re: [fw-wiz] bypassing PIX limitation, Horvath, Kevin M. |
| Indexes: | [Date] [Thread] [Top] [All Lists] |