inbound static nat 8.4(2) - Cisco Community

410

Views

0

Helpful

2

Replies

Hey Guys,

I'm beating my head and probably missing something simple, I have an ASA running 8.4(2) 5520 trying to do an inbound NAT from the internet to the machine. THis is what I did

interface INET

security-level 0

interface DMZ

security-level 90

object network 10.1.1.1

host 10.1.1.1

object network 2.2.2.2

host 2.2.2.2

nat (INET,DMZ) source static any any destination static 2.2.2.2 10.1.1.1

I've done several combinations and it always passes through the firewall without nat'ing for some reason??? help ???

2 REPLIES 2

Let me clarify, I'm trying to get anything from the internet, entering the INET interface to go to the destination IP of 2.2.2.2 to go to the real IP of 10.1.1.1.

Rob

Hello Robert,

object network 10.1.1.1

host 10.1.1.1

object network 2.2.2.2

host 2.2.2.2

nat (dmz,INET source static 10.1.1.1 2.2.2.2

access-list out_in permit ip any host 10.1.1.1

access-group out_in in interface INET

Rate helpful posts

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC