Site to Site VPN with NAT (100E, 5.6)
I am trying to replicate a VPN that we have on a Watchguard device.
In the Phase 2 settings of this VPN, there is an option to use 1:1 NAT that directs traffic from one of our public IPs to our internal host.
The remote side has an unknown device -- they will be using our public IP as their remote address. I believe that means I will need to, at some point, NAT or forward the traffic from the VPN tunnel to our local host. From what I understand, this could be accomplished using a VIP Profile, however when I try to create a VIP Profile to NAT the traffic for the VPN interface, I am given an error message that states a duplicate entry already exists (I don't see anything that could be considered a duplicate entry).
Is there any documentation, a blog post, or anything that could detail what I am trying to accomplish?
[ul]
If I need to provide any clarification or additional information I will try. FWIW I have already opened a ticket with support, which did not get very far.