https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542858#M611451 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>Unfortunately, you cannot do policy NAT for multiple inside IP and one public IP. You do need to find a way to differentiate the traffic on the outside interface. You can use different ports for different servers. But you cannot have both devices advertise their services using the same public IP and same port.</P><P></P><P>Regards,</P><P></P><P>NT</P></BODY></HTML> Wed, 15 Sep 2010 20:47:34 GMT Nagaraja Thanthry 2010-09-15T20:47:34Z https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542857#M611448 <P>Hello all,</P><P></P><P>I am trying to find out if possible to do the following:</P><P>I have a server in the DMZ: 172.17.1.100 /24 and server in the inside 172.20.1.200 /24 both will have the same nat ip</P><P>address outside: 1.1.1.200 this can be done using policy nat. ( I think, have not done yet).</P><P>Let say the above policy nat is implemented and the real questions here are: </P><P>1. if outside users connect to 1.1.1.200 then which servers the outside users will connect.</P><P>2. If posible for the outside user connect to 1.1.1.200 and this will redirect to DMZ server 172.17.1.100 instead of inside server 172.20.1.200</P><P></P><P>This is still in planning mode so no actual configuration has been done.</P><P></P><P>Thank you.</P> Mon, 11 Mar 2019 18:40:57 GMT https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542857#M611448 ttran 2019-03-11T18:40:57Z https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542858#M611451 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>Unfortunately, you cannot do policy NAT for multiple inside IP and one public IP. You do need to find a way to differentiate the traffic on the outside interface. You can use different ports for different servers. But you cannot have both devices advertise their services using the same public IP and same port.</P><P></P><P>Regards,</P><P></P><P>NT</P></BODY></HTML> Wed, 15 Sep 2010 20:47:34 GMT https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542858#M611451 Nagaraja Thanthry 2010-09-15T20:47:34Z https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542859#M611456 <HTML><HEAD></HEAD><BODY><P>Thank you for your response NT.&nbsp; I will work on different solution.</P></BODY></HTML> Wed, 15 Sep 2010 21:04:02 GMT https://community.cisco.com/t5/network-security/asa-policy-nat/m-p/1542859#M611456 ttran 2010-09-15T21:04:02Z