1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

vpn tunnel over public IP with NAT

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by rklomp, Mar 12, 2008.

  1. rklomp

    rklomp LI Guru Member

    Is it possible to create a gateway-to-gateway tunnel over a public ip address, and use one-to-one NAT to connect the tunnel with the LAN.

    Problem:
    The vpn tunnel is connected, but can not routed through the 1to1 NAT.

    our situation:

    localnetwork A 10.5.x.x -> public 1.2.3.4 A1 -> public 2.1.3.4 A2 (vpn server A) ==> tunnel ==>
    (vpn server B RV081) public B2 2.1.4.3 -> Public B1 2.1.4.4 (1to1 NAT) -> localhost B 10.5.x.x

    we're using a RV082 with firmware 1.3.5

    Could anyone help me?
     
  2. aver5

    aver5 LI Guru Member

    Hello,
    have you found solution , Thi sis exactly my problem , ours customers don't want anymore LAN / LAN VPN connexions
    when we want to access to they computer , they map a public address on IT but only they VPN gw have access on it so we have to build VPN between WAN IP
    and of course we have RV082
    it seem taht solution is to put a one-to-one NAT on internam computer , filter this public adress to be sure taht only RV082 WAN IP have a full access ...
    and so ....?????
     
  3. rklomp

    rklomp LI Guru Member

    workaround

    I didn't get this working.

    I added a new network for routing (172.23/16)
    This workaround works, because the start and end point aren't in the same network anymore.

    Workaround:
    localnetwork A 10.5.x.x -> public 1.2.3.4 A1 -> public 2.1.3.4 A2 (vpn server A) ==> tunnel ==>
    (vpn server B RV081) public B2 2.1.4.3 -> Public B1 2.1.4.4 (1to1 NAT) -> localhost B 172.23.x.x
     

Share This Page