Static PAT problem

Rahmat Ullah — Tue, 12 Mar 2019 05:30:02 GMT

I'm totally confused by Cisco documentation regarding Static PAT, as I can see mapping for certain hosts from outside global to the inside local.

All I want to Apply is using one public IP address and using Static PAT as below

static (DMZ,outside) tcp 195.21.40.133 smtp 192.168.50.10 smtp netmask 255.255.255.255
static (DMZ,outside) tcp 195.21.40.133 https 192.168.50.13 https netmask 255.255.255.255

Using the above config when testing SMTP server, I found that traffic going out is not using the IP address 195.21.40.133 rather it is using the outside interface ip 195.21.40.132.

According to Cisco's documentation there's an ACL prerequisite for Static PAT. I didn't understand that well.

I hope someone can better describe the static PAT, specially in my scenario.

You are right, the

Jon Marshall — Sat, 14 Feb 2015 11:27:42 GMT

You are right, the documentation is misleading.

When it says an acl is needed for static PAT I think it means for static policy PAT because if you then look at the examples static PAT does not use an acl.

Your configuration should work as I have used that many times before.

Can you post your full configuration removing any sensitive information.

Jon

topic You are right, the in Network Security

Static PAT problem

You are right, the