07-04-2017 05:36 AM - edited 03-12-2019 02:39 AM
Hi,
I have created a Public Server config and it has created an auto-NAT of the following:
object network IP.10.xx.2.122
nat (Inside,Outside) static IP.164.xx.11.11
I also want to be able to PAT on my inside interface so the traffic knows
to return to the firewall, every time I add an After-Auto NAT the traffic
does not hit the After-Auto NAT rule.
Has anyone done a similar config?
My After Auto NAT rule is as follows:
nat (Outside,Inside) after-auto 2 source dynamic any IP.10.XX.201.11 destination static IP.10.xx.2.122-New IP.10.xx.2.122-New
Regards
Solved! Go to Solution.
07-04-2017 07:25 AM
Hi shastymacnasty,
You don't need two NAT statements to achieve that. Add the following configuration and you will achieve what you want.
object network IP.10.xx.2.122
no nat (Inside,Outside) static IP.164.xx.11.11
!
nat (Outside,Inside) source dynamic any IP.10.XX.201.11 destination static IP.164.xx.11.11 IP.10.xx.2.122
07-04-2017 07:25 AM
Hi shastymacnasty,
You don't need two NAT statements to achieve that. Add the following configuration and you will achieve what you want.
object network IP.10.xx.2.122
no nat (Inside,Outside) static IP.164.xx.11.11
!
nat (Outside,Inside) source dynamic any IP.10.XX.201.11 destination static IP.164.xx.11.11 IP.10.xx.2.122
07-04-2017 07:49 AM
That worked perfect, thanks Spooster, been staring at it too long! Appreciate it.
07-04-2017 07:52 AM
Great.... Glad to hear. :-)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide