[ previous ] [ next ] [ threads ]
 
 From:  Cemil Browne <cbrowne at dubsat dot com dot au>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  NAT + IPSEC
 Date:  Fri, 21 Apr 2006 12:25:39 +1000 
I have a strange scenario:


Office (9.9.9.x)
|
|---PIX ------------------------------m0n0wall-------LAN (10.10.10.x)
      |--------IPSEC tunnel------------|      |----------OPT1  
(11.11.11.x)

I need to NAT traffic from OPT1 onto LAN's IP range so it can be  
encrypted over the IPSEC tunnel.

Traffic from 10.10.10.10 (example) to 9.9.9.1 flows fine.

I need traffic from 11.11.11.11 to be NAT'd to 10.10.10.10 so that is  
can go to 9.9.9.1 .

I of course could just IPSEC traffic from 11.11.11.x to 9.9.9.x but  
for various firewall related reasons, we don't want to do that.

Ideas?

Thanks,

Cemil Browne