Solved: Cisco ASA/PIX NAT

rgk013013 · ‎02-13-2012

Hi ALL,

I need to do Many to many nat in the below manner

EX:

192.168.1.0/24 ----- 172.168.1.0/24

Nat sould be if 192.168.1.1 - 172.16.1.1

192.168.1.2 -172.16.1.2

It should not change if 192.168.1.1 always need to goto 172.16.1.1 and so on

luisroja · ‎02-14-2012

Hello Jose,

In case that you need to translate the 192.168.1.0/24 network to 172.16.1.0/24 whenever they are going to an address routable on the outside interface, you would need the following configuration line:

static (inside,outside) 172.16.1.0 192.168.1.0 netmask 255.255.255.0

In that rule, inside is the real interface and outside is the mapped interface; 172.16.1.0 is the mapped address and 192.168.1.0 is the real address.

Each address of the 192.168.1.0/24 would be statically translated to 172.16.1.0/24

Let me know if that helps.

View solution in original post

rgk013013 · ‎02-13-2012

Hi,

It should be static ,shouldn't change will it work with

static(inside,outside) x.x.x.x x.x.x.x

ajay chauhan · ‎02-13-2012

Do you mean to say when communication is between -

192.168.1.0/24 & 172.168.1.0/24

192.168.1.0/24 should not get natted ? then answer is use no nat.

If you mean to say when communication in between and 192.168.1.0/24 should be natted then use policy-nat.

Thanks

Ajay

rgk013013 · ‎02-14-2012

Hi Thanks for your replay,

I will be comminicating to 192.168.1.0/24 so it has to natted 172.16.1.0/24 - this is orginal network which exist

An access attempt to say 192.168.1.10 it should always nated to 172.16.1.10,

if 192.168.1.25 --172.16.1.25 and so on ..

luisroja · ‎02-14-2012