Thanks Marius,

Thats what I got out of the documentation I found.

I just could not believe you cant specify destination static as access list like in the old NAT0 days.

nat (inside,outside) source static LAN LAN destination static access-list Nat0

Would it be a security issue to open a whole subnet.

object network OTHER_SITES

subnet 10.0.0.0 255.0.0.0

There are some big changes between 8.0 and 8.3 and higher, especially when it comes to NAT.  We are now required to  create object groups instead of ACLs.

ok, so if I had to exempt nat for the following, would I do an ojbect group or

object network OTHER_SITES

subnet 10.0.0.0 255.0.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.5.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.6.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.12.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.13.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.15.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.16.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.20.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.17.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.18.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.19.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.100.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.21.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.22.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.24.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.25.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.28.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.27.0.0 255.255.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.26.0.0

access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.5.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.6.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.12.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.13.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.15.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.16.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.20.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.17.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.18.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.19.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.100.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.21.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.22.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.24.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.25.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.28.0.0 255.255.0.0
access-list nat0 extended permit ip 10.31.0.0 255.255.0.0 10.27.0.0 255.255.0.0

etc