Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
496
Views
0
Helpful
1
Replies

ASA NAT Configuration

benghock
Level 1
Level 1

‎10-17-2006 07:46 AM - last edited on ‎02-21-2020 11:16 PM by Community Manager

Hi,

I have ASA 5510 running version 7.0(4) with three network segment configured, network A, network B and network C. Can I configure the ASA to NAT IP host for network B to network C IP host ? The purpose of this configuration is to allow user from network A to access network B IP host, without knowing the the actual server is actually locate in network C. If yes, pls. advise on how can we achieve this configuration.

0 Helpful
1 Reply 1

jwalker
Level 3
Level 3

‎10-17-2006 09:18 AM

Yes, this is possible. I am assuming A is the least secure network and C is the most secure...

This is done using statics and ACLs...

Here is an example:

static (networkC,networkB) 172.16.1.10 192.168.1.10

* translates networkC 192.168.1.10 to networkB 172.16.1.10

static (networkB,networkA) 10.10.10.10 172.16.1.10

* translates networkB 172.16.1.10 to networkA 10.10.10.10

access-list networkB_acl extended permit ip any host 172.16.1.10

* permits traffic from B to C host

access-list networkA_acl extended permit ip any host 10.10.10.10

* permits traffic from A to B host

access-group networkB_acl in interface networkB

access-group networkA_acl in interface networkA

** Please rate if this helps **

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top