topic Hi Mike,Will this be a in Network Security

Policy Nat

opnineopnine — Tue, 12 Mar 2019 05:10:16 GMT

Hi all,

Please can someone explain when I should I use Policy Nat?

thanks.

You want to use policy NAT

Mike Schultz — Tue, 02 Dec 2014 20:29:08 GMT

You want to use policy NAT when certain traffic needs to be NAT'd. and other traffic does not.

In my network, we have a business partner that connects to us that has overlapping networks ranges with a different partner, but only from part of our network. They have a single server (192.168.10.85) that users on our network need to access. Users on half of our network (10.15.0.0/16) need to be NAT'd, but users on the rest of the network (10.20.0.0/16) do not need to be NAT'd. We use policy NAT to specify that when traffic has a source address of 10.20.0.0/16 and a destination address of 192.168.10.85, the traffic is not NAT'd. Conversely, we specify that if traffic has a source address of 10.15.0.0/16 and a destination address of 192.168.10.85, the traffic will be NAT'd.

That is policy NAT.

Hi Mike,Will this be a

opnineopnine — Tue, 02 Dec 2014 20:41:56 GMT

Hi Mike,

Will this be a configuration of policy?

access-list PolicyNAT-Cust1 extended permit ip host Oracle 142.101.64.0 255.255.255.0
access-list PolicyNAT-Cust1 extended permit ip host Oracle 142.101.65.0 255.255.255.0
!
nat (DMZ-MGMT) 10 access-list PolicyNAT-Cust1 outside

Thanks.

This is on an ASA? Which

Mike Schultz — Tue, 02 Dec 2014 20:41:57 GMT

This is on an ASA? Which version?

This is a 8.2 version. Thanks

opnineopnine — Tue, 02 Dec 2014 22:50:12 GMT

This is a 8.2 version.

Thanks.

paste the output from sh run

Mike Schultz — Tue, 02 Dec 2014 22:53:34 GMT

paste the output from sh run nat

Hello Mike, I cant paste it

opnineopnine — Tue, 02 Dec 2014 23:24:21 GMT

Hello Mike,

I cant paste it because of the info we have for the customer, but thanks for your help. I will keep looking form more examples.

Thanks!!