I am running a ebox with VLAN's in a branch of a large company
Vlan 825 is a layer 2 vlan going to my border router (192.168.234.1/30) which is nat'ed here for proxy access working perfectly.
now I already have a static NAT on my Cisco router to a server which terminates some SSL VPN access.
this I have connected with another layer 2 network 192.168.248.0/30 and I can reach all of my internal resources no problems with routing.
the issue is that some resources are sitting in hq, and I would like these to be reachable through the ssl vpn. the problem of course being that 192 network is not routed so they cannot be reached.
therefore I would like to nat traffic from the host 192.168.248.2 (.1 is ebox) to my internal address 10.160.40.20 (an address which is routed).
I have already tried to do this with firewall policies (port forwarding) but unsuccesful, is this even possible?