I've 4 internal servers that will initiate connections to a remote one through an IPSEC VPN.
NATing the destination public IP is needed to avoid routing it in our internal network.
At the same time NATing the source private IP to be a public one to avoid any IP conflict at the other VPN end (PAT cannot be used as it is not applicable by the other party).
To do so we have to use the route based VPN which has 0.0.0.0/0 proxy id by default.
So I have to override it from phase two configuration.
The issue I face here is that I had to override the proxy id with /29 subnet to contain the four IPs but this wasn’t accepted by the other party which has a Cisco gateway and configures the VPN access-lists with
hosts (/32) only (4 access-lists), so in order to match these proxy ids I had to configure four VPNs (or four phase 2) to overcome the proxy id issue and override it to get this VPN working.
Is there any solution for this case other than creating 4 route-based VPNs?
Thanks for any reply in advance