01-23-2012 01:52 PM - edited 03-11-2019 03:18 PM
Hey Guys,
I'm beating my head and probably missing something simple, I have an ASA running 8.4(2) 5520 trying to do an inbound NAT from the internet to the machine. THis is what I did
interface INET
security-level 0
interface DMZ
security-level 90
object network 10.1.1.1
host 10.1.1.1
object network 2.2.2.2
host 2.2.2.2
nat (INET,DMZ) source static any any destination static 2.2.2.2 10.1.1.1
I've done several combinations and it always passes through the firewall without nat'ing for some reason??? help ???
01-23-2012 02:00 PM
Let me clarify, I'm trying to get anything from the internet, entering the INET interface to go to the destination IP of 2.2.2.2 to go to the real IP of 10.1.1.1.
Rob
01-23-2012 05:31 PM
Hello Robert,
object network 10.1.1.1
host 10.1.1.1
object network 2.2.2.2
host 2.2.2.2
nat (dmz,INET source static 10.1.1.1 2.2.2.2
access-list out_in permit ip any host 10.1.1.1
access-group out_in in interface INET
Rate helpful posts
Julio
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide