https://community.cisco.com/t5/network-security/nat-issue/m-p/3042385#M146721 <P>Dear All</P> <P>I have configured two static NAT rules on ASA which is running 9.1 OS version.</P> <P>`configuration is like&nbsp;</P> <P>Ist Nat rule</P> <P>Real &nbsp;IP 10.50.1.16 Mapped IP 192.168.200.1 with source port 80 and destination port 80</P> <P>Second Nat Rule&nbsp;</P> <P>Real &nbsp;IP 10.50.1.16 Mapped IP 192.168.200.1 with source port 83 and destination port 83</P> <P>And all nat rules are object nat.</P> <P>first Nat rule is working but second is not working. &nbsp;I have attached the logs also.</P> <P></P> <P></P> <P>Recommended Action is :</P> <P class="peaerract">When not on the same interface as the host using NAT, use the mapped address instead of the actual address to connect to the host. In addition, enable the <B>inspect</B> command if the application embeds the IP address.</P> <P class="peaerract">Could any can help me to sort out this issue.</P> <P class="peaerract">Regards&nbsp;</P> <P class="peaerract">Tony</P> <P></P> <P></P> Tue, 12 Mar 2019 08:53:56 GMT tonysebastian 2019-03-12T08:53:56Z https://community.cisco.com/t5/network-security/nat-issue/m-p/3042385#M146721 <P>Dear All</P> <P>I have configured two static NAT rules on ASA which is running 9.1 OS version.</P> <P>`configuration is like&nbsp;</P> <P>Ist Nat rule</P> <P>Real &nbsp;IP 10.50.1.16 Mapped IP 192.168.200.1 with source port 80 and destination port 80</P> <P>Second Nat Rule&nbsp;</P> <P>Real &nbsp;IP 10.50.1.16 Mapped IP 192.168.200.1 with source port 83 and destination port 83</P> <P>And all nat rules are object nat.</P> <P>first Nat rule is working but second is not working. &nbsp;I have attached the logs also.</P> <P></P> <P></P> <P>Recommended Action is :</P> <P class="peaerract">When not on the same interface as the host using NAT, use the mapped address instead of the actual address to connect to the host. In addition, enable the <B>inspect</B> command if the application embeds the IP address.</P> <P class="peaerract">Could any can help me to sort out this issue.</P> <P class="peaerract">Regards&nbsp;</P> <P class="peaerract">Tony</P> <P></P> <P></P> Tue, 12 Mar 2019 08:53:56 GMT https://community.cisco.com/t5/network-security/nat-issue/m-p/3042385#M146721 tonysebastian 2019-03-12T08:53:56Z https://community.cisco.com/t5/network-security/nat-issue/m-p/3042386#M146727 <P>Hi</P> <P></P> <P>In 1 case, it seems that you're missing a statement in your outside acl and the other shows up an asymmetric routing issue.</P> <P>Could you drop a txt file with your config? and also output of packet-tracer command?</P> <P></P> <P>Thanks</P> <P>PS: Please don't forget to rate and mark as correct answer if this answered your question</P> Wed, 08 Feb 2017 14:18:09 GMT https://community.cisco.com/t5/network-security/nat-issue/m-p/3042386#M146727 Francesco Molino 2017-02-08T14:18:09Z