i need to nat 172.16.3.151 into 192.168.200.151 before it pass the ipsec vpn tunnel
Source Network Translated Network Remote Network
172.16.3.151 192.168.200.151 10.3.136.0
i need to know only how to translate 172.16.3.151 into 192.168.200.151 so if the 172.16.3.151 ping 10.3.136.0 the ping look like he came from 192.168.200.151
any help
/ip firewall nat
add chain=srcnat src-address=172.16.3.151 dst-address=10.3.136.0 action=src-nat to-addresses=192.168.200.151
Many thanks bro, do i need to make static route as long this 192.168.200.151 is not listed on any of my router interface
your help is really appropriated
Not necessarily. If it’s used only for outgoing connections, it can work even without being assigned anywhere.
but no traffic pass through the nat exempt
my nat exempt is
accept from 192.168.200.151 10.3.136.0 , but no hits
If you have accept rule in srcnat chain to exempt traffic from default masquerade, and this new rule before it, you won’t see additional hits there. Rule with action=src-nat is enough as end result. But it should be ok, because neither default masquerade will catch the connection.
If it doesn’t work as it should, you probably need to post your config, so that someone can tell what exactly is going on.
thank you bro, you saved me 
))))