03-08-2016 08:30 AM - edited 03-12-2019 12:27 AM
Hi all,
Require urgent help to configure dynamic & static nat parallel in Cisco ASA 5585 ver 9.5. Public IP is same.
172.16.1.15 - 125.x.x.x - Static nat (Requirement for incoming mail)
172.16.1.10, 172.16.1.11 - 125.x.x.x - Dynamic nat (Requirement for outgoing mail)
Thanks
Kamlesh
03-08-2016 08:36 AM
Assuming you have interface named inside and outside
object network obj_172.16.1.15
host 172.16.1.15
nat (inside,outside) static 125.x.x.x
object network obj_172.X.X.X
range 172.16.1.10 172.16.1.11
nat (inside,outside) dynamic 125.x.x.x
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
03-08-2016 08:54 AM
Thanks Dinesh,
However, we are able to get natting from outside to in but not inside to outside.
Thanks
Kamlesh
03-08-2016 09:02 AM
Try this and let me know how it fares
object-group network net_servers
network-object host 172.16.1.10
network-object host 172.16.1.11
object-group network net_public
network-object host 125.x.x.x
nat (inside,outside) source dynamic net_servers net_public
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
03-08-2016 09:26 AM
Hi,
Still same problem
thanks
Kamlesh
03-08-2016 09:28 AM
Can you share output of this command
packet-tracer input inside
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide