NAT questions

[woodraith]

This is what I want to do, and I am not sure if it can be done

I have a 2621XM with 12.3 IOS
on FE0/0 is going to a cable router (it the internet) and has a real IP
on that segment I have a laptop that uses IPSec.
on FE0/1 has NAT configured with overload and DHCP
on that segment there is a printer with a static NAT IP

I want to do is:
1. configure the 2621XP so that IPSec will work fron the 1 computer (prefered)
2. configure the cisco to let me print from the laptop on FE0/0 to the printer on FE0/1


any thoughts?

thanks

 

[gconnect]

I want to do is:
1. configure the 2621XP so that IPSec will work fron the 1 computer (prefered)

Configure an ACL for the 1 host PC to trigger the IKE process (match in crypto map) upon accessing the inside networks

2. configure the cisco to let me print from the laptop on FE0/0 to the printer on FE0/1

If all IP traffic is permitted in the first step than this will be automatic. Because the Security Association will be built from the Laptop IP to the Inside Network and all traffic (from the laptop to the inside) will be able to pass w/o problem.


**I am assuming that you mean that all inside clients will be Nat'd to the IP of the Outside Interface F0/0

 

[woodraith]

GConnect,
I am green on most of the router configuring....
where would I find information on IKE process.
to clerify, I want the vpn client on the NAT side and is under my control, the host is on the internet and I have no access other then as a user.
all addresses are nat'd on FE0/1 and I have a pool of 6 registered addresses avalable on the on FE0/0.

thanks for pointing me is a direction.