Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1524
Views
0
Helpful
1
Replies

how to implement NAT on multiple internal VLANs (DMZ)

G4stechno
Level 1
Level 1

‎04-05-2011 08:46 AM - edited ‎03-11-2019 01:17 PM

Hi I've got a cisco asa 5520 and I need some help setting up the NAT for multiple DMZs on it.

Drawing11.jpg

I want to use PAT on the outside interface.

internally ive created subinterfaces for the VLANs and connected to a trunk port on a switch.

Vlans.png

can you please advise me whats the best way to configure NAT for this scenario. I've got only 1 external public IP address.

Labels:
0 Helpful
1 Reply 1

Somanna M.P
Cisco Employee
Cisco Employee

‎04-05-2011 10:32 AM

Hi Harinder,

The best way to do this would be to pat it to the public IP address you have . This can be done in a pretty simple manner. Assign the public Ip address to the outside interface on the ASA and then the config goes like :

nat (DMZ1) 1  
nat (DMZ2) 1  
nat (DMZ3) 1  
nat (DMZ4) 1  
nat (DMZ5) 1  

Global (outside) 1  interface 

This PATs all the IP addresses on the DMZ interfaces to the outside interface IP address.
Do let me know if you have further queries on this. 



PS: Please mark the question resolved if it has been answered. Do rate helpful posts.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card