Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
752
Views
0
Helpful
4
Replies

Destination based Natting in PIX 515

yagnesh_tel
Level 1
Level 1

‎07-08-2009 12:17 PM - edited ‎03-11-2019 08:53 AM

I have situation where I need to do natting based on destination addresses in PIX 515. I know this is quite easy in routers but never did on PIX so I want to know is this possible? If it is then what is the command for this?

Labels:
0 Helpful
4 Replies 4

Jon Marshall
Hall of Fame
Hall of Fame

‎07-08-2009 01:16 PM

Could you give an example with IP addresses of what exactly you are trying to do ?

Jon

0 Helpful

yagnesh_tel
Level 1
Level 1
In response to Jon Marshall

‎07-08-2009 04:55 PM

suppose packet from hosts(1.1.1.X) comes into PIX's inside interface for destination 192.168.10.2, this destination address should be rewrite to 10.10.10.1 while packet traverse outside interface of the PIX.

0 Helpful

Patrick0711
Level 3
Level 3
In response to yagnesh_tel

‎07-08-2009 05:12 PM

Use policy NAT

access-list policy_NAT ext permit ip 1.1.1.0 255.255.255.0 host 192.168.10.2

static (inside,outside) 10.10.10.0 access-list policy_NAT

Keep in mind that you cannot policy NAT multiple inside hosts to a single IP. You'll need to specify a classful network in the static statment.

0 Helpful

yagnesh_tel
Level 1
Level 1
In response to Patrick0711

‎07-09-2009 06:14 AM

If I specify classful network in static statement then what will be destination IP after translation? You mean to say for packets having source as 1.1.1.x and destination as 192.168.10.2, destination will be rewrite to 10.10.10.x after translation where x will be the same integer in both source and destinatin?

0 Helpful
Review Cisco Networking for a $25 gift card
Top