cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1863
Views
10
Helpful
6
Replies

FTD Nat Question

benolyndav
Level 4
Level 4

Hi

Is it possible to Nat to another device  so if I have a public IP natting to a Private IP does that private IP have to reside on the FTD or can it somehow be forwarded on to private IP (server) routing is inplace between FTD and Server.???

 

Thanks

1 Accepted Solution

Accepted Solutions

@benolyndav you would define the interface that the private server is reachachable via, so the inside or DMZ interface for example.

View solution in original post

6 Replies 6

Hi @benolyndav no it doesn't have to reside on the FTD, it needs to be routable from the FTD.

Hi Rob

So 

1. Nat rule Public outside (interface) to private IP ( interface that has route to  internal IP not residing on FTD Interface)

2. acl allowing the above.

 

Thanks

@benolyndav correct. Ensure the Access Control rule (ACL) references the real private IP address not the translated.

Hi rob

Im a bit confused as to what interface to stipukate in nat rule as the private ip (server) dosent reside on the FTD itself, i have an acl saying outside to in any to private Ip??

@benolyndav you would define the interface that the private server is reachachable via, so the inside or DMZ interface for example.

Brilliant Rob it works Thankyou 

Review Cisco Networking for a $25 gift card