Meraki

Community

Does the MX support 1:1 NAT inside a third party IPSec tunnel?

steakandeggs
Here to help
2 weeks ago
2 weeks ago

Does the MX support 1:1 NAT inside a third party IPSec tunnel?

Example: subnet 10.1.1.0/24 behind the MX gets natted to 192.168.5.0/24 where the fourth octect remains unchanged in the NAT translation. The hosts on the far side of the tunnel address, for example, 192.168.5.3, and the MX translates this and sends it to 10.1.1.3. Possible?

0 Kudos
1 Reply 1
alemabrahao
Kind of a big deal
2 weeks ago
2 weeks ago

No, it is not supported over a third party IPSec tunnel.

 

https://documentation.meraki.com/MX/Site-to-site_VPN/Using_Site-to-site_VPN_Translation

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.