In ASA 8.3

could we do this nat to resolve problem ?

nat (inside,outside) source static 192.168.1.1 2.2.2.2 destination static 1.1.1.1 3.3.3.3 ?

thanks

It's the same idea. You have to create 2 static NAT :

object network inside-host

  host 192.168.1.1

  nat (inside,outside) static 1.1.1.1

object network outside-host

  host 3.3.3.3

  nat (outside,inside) static 2.2.2.2

The main idea is that

     - the inside-host will be translated on the outside zone

     - the outside-host will be transted on the inside zone

Having static translations will give you the posibility to have bidirectional traffic

Regards

Dan

thank Dan, pls check again my first post ( I have updated it).

Does your comand will work like this: a packet from 192.168.1.1 to 2.2.2.2 so (src, dst) : (192.168.1.1,2.2.2.2)

when it get out the outside int of ASA it become (1.1.1.1,3.3.3.3) ?

object network inside-host

  host 192.168.1.1

  nat (inside,outside) static 1.1.1.1

object network outside-host

  host 3.3.3.3

  nat (outside,inside) static 2.2.2.2

This will make  : 

src 192.168.1.1  ===>inside  FW outside ===> src 1.1.1.1

dst 2.2.2.2                                                      dst 3.3.3.3

So to answer your question : yes.

Regards

Dan

I usually use SNAT, DNAT make me confuse .

Could a cisco router do the same function ?

ip nat inside source static tcp 192.168.1.1  1.1.1.1

ip nat outside static tcp 2.2.2.2 3.3.3.3

Hello,

Yes. A router can do the same thing as an example:

src: 192.168.1.1 des: 1.1.1.1 -> src: 2.2.2.2 des 3.3.3.3

ip access-list extended test1 permit ip host 192.168.1.1 host 1.1.1.1

ip access-list extended test2 permit ip host 1.1.1.1 host 2.2.2.2

ip nat inside source list test1 2.2.2.2

ip nat outside source list test2 3.3.3.3

Regards,

Do rate all the helpful posts

Julio

Hi Julio,

As far as I know when you use INSIDE nat with source list , the packet must be initiated on INSIDE only in order to be nated. So in order to have bi-directional you have to use also static statements.

Regards

Dan