NAT question
steele84
Member Posts: 62 ■■□□□□□□□□
in CCNA & CCENT
I have being working out an issue with a site to site vpn (which i got resolved) but I still have a question about "how that works" . So I have a local network with say a subnet of 192.168.4.0 /24 and a remote network of 192.168.1.0/24, and I created nat objects on 2 ASA routers that state use the following configurations below. So my question is how does NAT Translate IP 192.168.4.184 to the 192.168.1.0 netowrk without a static .1 network address assigned to it? What IP would show up in the header of a receiving device in the 192.168.1.0 network ? I confused because I have not route configured between networks .4 and .1 .
ASA 1
DCHFW# sh run object network
object network RemoteLAN
subnet 192.168.1.0 255.255.255.0
object network LocalLAN
subnet 192.168.4.0 255.255.255.0
nat (inside,outside) source static LocalLAN LocalLAN destination static RemoteLAN RemoteLAN
ASA 2
RemoteFW# sh run object network
object network RemoteLan
subnet 192.168.4.0 255.255.255.0
object network Local_LAN
subnet 192.168.1.0 255.255.255.0
nat (inside,outside) source static Local_LAN Local_LAN destination static RemoteLan RemoteLan
ASA 1
DCHFW# sh run object network
object network RemoteLAN
subnet 192.168.1.0 255.255.255.0
object network LocalLAN
subnet 192.168.4.0 255.255.255.0
nat (inside,outside) source static LocalLAN LocalLAN destination static RemoteLAN RemoteLAN
ASA 2
RemoteFW# sh run object network
object network RemoteLan
subnet 192.168.4.0 255.255.255.0
object network Local_LAN
subnet 192.168.1.0 255.255.255.0
nat (inside,outside) source static Local_LAN Local_LAN destination static RemoteLan RemoteLan
“What lies behind us and what lies before us are tiny matters compared to what lies within us.”
― Ralph Waldo Emerson
― Ralph Waldo Emerson
Comments
-
shortstop20 Member Posts: 161 ■■■□□□□□□□The ASA on the sending side encapsulates the packet and then routes it over the Internet using the sending ASA's public IP as source and the receiving ASA public IP as the destination.
The receiving device in the 192.168.1.0 network would see a source of 192.168.4.184. The end nodes see the real(private) IP addresses.CCNA Security - 6/11/2018
CCNP TShoot - 3/7/2018
CCNP Route - 1/31/2018
CCNP Switch - 12/10/2015
CCNA R/S - 1/14/2015