Hello!
I have to establish a IPSEC tunnel to a big customer which has a policy to only accept tunnel networks from 192.168.0.0/16.
The network which should be connected is a 10.x.x.x/24 network - i would like to SNAT the traffic before it enters the IPSEC tunnel - i once did such a (quite dirty....) setup with pfsense - but with Edgerouter i am not able to set it up.
my configuration is - i assigned the address from the Customer on one interface - the tunnel is up for this address (192.168.130.1 == x.x.x.x from customer) i can reach the services from the Edgeroute itself - but how can i NAT them TO this address before they go to the tunnel (a simple SNAT rule did not work.....)
any ideas?
regards
Martin