Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
599
Views
0
Helpful
1
Replies

No NAT rule in Cisco ASA using ASDM

DannyVendel8460
Level 1
Level 1

‎07-08-2019 10:56 AM

I have a webserver on a DMZ. Webserver should be accessed from public internet as well as from internal networks.
They access the server with http://www.url.com and both internal users and external gets the same IP from the DNS servers. Lets say: 85.119.1.10

I would like to add a NAT rule that do something like this:

From source inside 192.168.1.10 to destination 85.119.1.10 translate to source 192.168.1.10 destination: 172.16.1.10

For the reply from the webserver to the inside clients. I would like to add a rule that DO NOT translate source adress. So something like this:

source: 172.16.1.10 to destination: 192.168.1.10 translate to source 172.16.1.10 to destination 192.168.1.10

Please see the attached drawing for a better understaning.

When ever I try this ASDM ads the same type of translation in both direction. I have done these NAT rules in Checkpoint firewall but never in ASA. Is this possible? Can anyone assist.
Thanks.

Labels:
Preview file
56 KB
0 Helpful
1 Reply 1

DannyVendel8460
Level 1
Level 1

‎07-09-2019 12:32 PM

Does anyone know if this works?
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card