cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

315
Views
10
Helpful
1
Replies
Highlighted

Cisco ASA NAT exemption

Hello Guys @balaji.bandi @Marius Gunnerud  @Rob Ingram  @Aref Alsouqi  

 

I have a internal lan interface: 172.16.10.1/24 and it is gateway.  172.16.10.40 is another router connected internal for specific external routes . 

so any traffic which goes from inside to inside to 172.16.10.40 gets NATed to 172.16.10.1 which is fine. 

 

I want to confgure exemption for NATing to particular destination IPs. For example, if destination is 216.76.54.32 through 172.16.10.40 from inside to inside. I want ASA not to do nating and leave the source IP as it is. 

 

Please suggest command to accomplish it.

 

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Rising star

I think you can do something like the following:

object network Host-216.76.54.32
 host 216.76.54.32

nat (inside,inside) 1 source static any any destination static Host-216.76.54.32 Host-216.76.54.32

If that does not work, try to replace the any keyword with your internal LAN object.

View solution in original post

1 REPLY 1
Highlighted
Rising star

I think you can do something like the following:

object network Host-216.76.54.32
 host 216.76.54.32

nat (inside,inside) 1 source static any any destination static Host-216.76.54.32 Host-216.76.54.32

If that does not work, try to replace the any keyword with your internal LAN object.

View solution in original post

Content for Community-Ad