Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
282
Views
0
Helpful
1
Replies

A NAT question

g.leonard
Level 1
Level 1

‎03-14-2007 05:10 AM - edited ‎03-11-2019 02:45 AM

Not something I've attempted before so perhaps somebody can shed some light.

Have a PIX configured with static inside translations, so servers appear with a fixed IP address on external subnet.

In addition to this I want to add a static outside translation so that all outside addresses appear to come from the same address to the host inside.

Presumably the 2 can co-exist, the result being 2 separate translations?

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎03-14-2007 05:29 AM

Hi

I don't see any reason why this wouldn't work as you are Natting source IP addresses only so there should not be an overlap.

So to nat outside addresses you could do

nat (outside) 1 0.0.0.0 0.0.0.0 outside

global (inside) 1 "ip address" netmask 255.255.255.255

I have used NAT like this before but not for all addresses, ie i had specific subnets coming in via VPN tunnels so i have never used the 0.0.0.0 0.0.0.0 addressing for outside NAT.

Let me know if it works

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card