VPN with overlapping IP addresses

Discussion in 'Cisco' started by kuehwi, May 30, 2005.

  1. kuehwi

    kuehwi Guest

    Hi!

    Since we are not very familiar with Cisco's VPN functionality, we have
    the following problem on a PIX 506 (PIX Version 6.2(2))

    Company A + B both want to establish a VPN to Company C.

    A has the same subnet as B: 192.168.0.0 /24, C has a different one.

    A established VPN to C with 192.168.0.0 - works fine, nothing to do.
    C told B to use 192.168.2.0 for VPN and to do NAT to avoid conflicts.

    I don't know how to realize this on the PIX at B's side (changing the
    whole internal subnet of B is not possible!)

    Would something like this help:

    static (outside, inside) 192.168.2.0 192.168.0.0 netmask 255.255.255.0
    dns

    May this be right for the access-list?

    access-list 100 permit ip 192.168.0.0 255.255.255.0 company_c_net
    nat 0 access-list 100

    Thanks for your help!

    Robert
     
    kuehwi, May 30, 2005
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.