NAT de LAN de BR1 a WAN de BR1

El problema es el siguiente:

Tenemos un BR1 conectado en su puerto WAN con un MPLS (cisco ip estática 172.40.43.1) su dirección en el BR1 WAN es 172.40.43.2/25. En la Red LAN tenemos la subred 172.40.43.129/25.
El problema es que las peticiones de la red LAN al servidor proxy llegan con solo una IP que es la 172.40.43.2 y no se puede dar privilegios a cada IP de la red LAN del BR1.

¿Es posible hacer un NAT de la LAN del BR1 al WAN del BR1? por ejemplo:

LAN 172.40.43.130 NAT 172.40.43.30 en la red WAN

@Luis_Angel_Rojas_Rui

Replied here:

4 Likes

Thank you very much, it worked, it is exactly the configuration that we required.

2 Likes

In the case of PepVPN, can the same be done? We have a balance 710 with a wan that reaches the proxy server. The scenario is as follows: when the connection to the wan port fails, the Wi-Fi enters and everything is sent by the PepVPN.

NAT Mapping will work when traffics sent from LAN to WAN. PepVPN traffics route to the central device when sent out to WAN will follow the NAT Mapping as well.

Can you provide network diagram for the design ? WIFI enters ?

1 Like

It is intended that the same scheme for when MPLS works is with PepVPN using WIFI WAN or CEL WAN

The idea is that when the mpls fail, the computers reach the server 172.40.27.25 through the VPN

@Luis_Angel_Rojas_Rui

This can be achieve using outbound policy.

1 Like

It is correct, so it is configured, the problem is that all vpn come out with the same ip. How can I do so that the IP of some equipment of the lan network of BR1 arrives with the same IP to the server?