NAT and VPN

Quick Question. How do I separate the traffic that is NAT'd? I do not want to NAT my VPN traffic, but I do want to NAT the traffic that goes directly to the internet.

Thanks

Find more posts tagged with

SAVE $250 on Your Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View Boot Camps

Comments

networker050184

Exclude the VPN traffic from your NAT ACL.

ZblaJhaNi

networker050184 wrote: »

Exclude the VPN traffic from your NAT ACL.

or deny VPN traffic in you NAT ACL

notgoing2fail

When you create the VPN, you define the interesting traffic in the ACL as others have suggested.....

flipmad

thanks, I'll let you know how it goes. I have the VPN working just fine, but I just cant get the Internet traffic to work. I will play with it some more.

tdox

Cisco 871 VPN & NAT - Petri.co.il forums by Daniel Petri

networker050184

ZblaJhaNi wrote: »

or deny VPN traffic in you NAT ACL

Whatever dude. Potato potato (that doesn't really come out well in type lol).

flipmad

All is working.. Thanks!!

ZblaJhaNi

networker050184 wrote: »

Whatever dude. Potato potato (that doesn't really come out well in type lol).

my potato NAT access-list alway begins with denying the traffic which should be encrypted over the VPN tunnel. Then i simply define the NAT rules.

But this is just result of habbit

@blake15: I am glade you made it

BR