Hello, I have some interesting scenario for all. Well, I have two location connected over ISP thru VPN tunnel:
Central office side: I have router and PIX 515E with 3 interface. 'remote office' network: 192.168.2.0/24 'main office' network : 192.0/24 VPN tunnel is over frame-relay dlci and only one subinterface on central office router can access to global network: IPsec Tunnel: (outside port PIX) (router on remote office some Alaied Tellesyn) The hint: I can access from remote office to main office, but I CAN'T do static map IP address from remote office to exit to internet with public IP address, because a can't nat ip address from outside interface back to outside interface again with public IP, or I can!? The one solution is probably to configure another interface for VPN tunnelling with remote office and than do NAT for that interface thru outside, but I don't have another interface only for intf2/DMZ. Please is there any good advice for this scenario? Best regards, Milan Jovancic Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62919&t=62919 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
