Hello All: I will be configuring an ASA where the remote-end requirement is that the address presented to them is a globally unique (non-RFC 1918) address. I *think* this means I have to double NAT. So, instead of having the 192.168.x.x address presented over the tunnel, it has to be a "real" address.
Has anyone ever configured something like this on an ASA? I've always used the inside addresses for interesting traffic in the ACL. Can I use the static, outside address in the tunnel? Regards, Mike -- Michael K. Smith - CISSP, GISP Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com w: +1 (206) 404-9500 f: +1 (206) 404-9050 PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
PGP.sig
Description: PGP signature
_______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
