cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
127
Views
0
Helpful
1
Replies

Cisco ASA Web Server natting

rajirahi123
Beginner
Beginner

Hi,

have a web server inside with a static NAT. Server can be reach from internet without problem.

But I would like to mask the public IP and use the inside interface. What I mean, when the trafic goes to the server, I can see the Public IP (packet capture Wireshark on server) , I prefer to see the inside IP address.

We changed a Fortigate for ASA, with fortigate I just have to use NAT on the Outside to Inside policy, how can I do the same with ASA?

many thanks for your help

ASA 5515 Ver 9.2.3

1 Reply 1

Akshay Rastogi
Cisco Employee
Cisco Employee

Hi,

Please correct me if i am wrong. You are having inside server which is accessible from Outside hosts(you have configured static nat for inside server on public ip). Now you want to map you inbound source public IP as well(so that server could see that the traffic is initiated from Inside subnet IP address?

If this is what you are looking for, then try this :

nat (inside,outside) source static <inside-server-object> <public outside mapped ip object> destination static <source-public-public-object> <inside-subnet-ip-object>

Let me know the result.

Hope it helps.

Regards,

Akshay Rastogi

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers