Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 39 subscribers
  • Views 1640 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NAT multiple networks in an Ipsec tunnel

LMSIIATO

Hello everyone,
I have an IPsec connection to our holding with NAT, the fake local network is provided to us by the holding and can only be one.
The problem is that I also have to convey other secondary networks to the tunnel, so I was thinking of doing a source NAT of the secondary networks and masking them in the main network for the remote destination of the ipse, could this work?



This thread was automatically locked due to age.
Parents
  • +1

    I solved it myself.

    In device console:

    system ipsec_route add net 10.234.0.0/255.255.255.0 tunnelname "mytunnelname"

    repeat for all remote subnet.

    In NAT:

    tratffic originating from additional subnet, destinating to remote subnet, SNAT to NET-FAKE-IP

Reply
  • +1

    I solved it myself.

    In device console:

    system ipsec_route add net 10.234.0.0/255.255.255.0 tunnelname "mytunnelname"

    repeat for all remote subnet.

    In NAT:

    tratffic originating from additional subnet, destinating to remote subnet, SNAT to NET-FAKE-IP

Children
No Data
Unfiltered HTML