The Command Does not work ip nat inside source route-map EP1 <NAT IP 1> ip nat inside source route-map EP2 <NAT IP 2>
when using route-maps we can only overload to the interface ip .. Any other solution Regards Zeeshan Date: Thu, 3 Apr 2008 02:00:01 -0700 From: [EMAIL PROTECTED] Subject: Re: [OSL | CCIE_RS] Policy Nat with IPSEC on Router To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [email protected] On second thought the next-hop will not work. try an extended ACL such as ip acccess-list 101 permit host 172.20.18.25 host <end point> in the route map instead. Ajay Chenampara <[EMAIL PROTECTED]> wrote: I think this will work: ip access-list 1 permit 172.20.18.25 ip access-list 2 permit <IP of VPN 1 end point host> ip access-list 3 permit <IP of VPN 2 end point host> route map EP1 permit 10 match ip address 1 match next-hop 2 route map EP2 permit 10 match ip address 1 match next-hop 3 ip nat inside source route-map EP1 <NAT IP 1> ip nat inside source route-map EP2 <NAT IP 2> ZEESHAN SANAULLAH <[EMAIL PROTECTED]> wrote: Hello ... Need help regarding the following issue A router is making an ipsec connection to two different routers over internet. Only a singe ip lets say 172.20.18.25 is allowed over vpn Is it possible to nat the ip to two different ips for each vpn Regards Zeeshan More immediate than e-mail? Get instant access with Windows Live Messenger. You rock. That's why Blockbuster's offering you one month of Blockbuster Total Access, No Cost. You rock. That's why Blockbuster's offering you one month of Blockbuster Total Access, No Cost. _________________________________________________________________ Going green? See the top 12 foods to eat organic. http://green.msn.com/galleries/photos/photos.aspx?gid=164&ocid=T003MSN51N1653A
