Really simple question for a newb:
I have a single web server that I want to share on a static IP. I'll handle the ports via ACL instead of at the NAT level.
Inside Address: webhost-in 192.168.28.11
Desired Outside Address: webhost-out 220.127.116.11 (obviously hypothetical)
What I think the command should be is:
nat (outside,inside) source static webhost-in webhost-out no-proxy-arp
I've been out of the firewall management game since around 8.2, and I'm not sure if the commands are similar to what they used to be.
NAT has changed between 8.2 and 9.x, here is an example for 9.x:- (you may need to change the inside, outside nameif if different in your environment).
object network WEBHOST
nat (inside,outside) static 18.104.22.168
access-list OUTSIDE->IN permit tcp any object WEBHOST eq 443