Hey Guys,
I'm beating my head and probably missing something simple, I have an ASA running 8.4(2) 5520 trying to do an inbound NAT from the internet to the machine. THis is what I did
interface INET
security-level 0
interface DMZ
security-level 90
object network 10.1.1.1
host 10.1.1.1
object network 2.2.2.2
host 2.2.2.2
nat (INET,DMZ) source static any any destination static 2.2.2.2 10.1.1.1
I've done several combinations and it always passes through the firewall without nat'ing for some reason??? help ???
Let me clarify, I'm trying to get anything from the internet, entering the INET interface to go to the destination IP of 2.2.2.2 to go to the real IP of 10.1.1.1.
Rob
Hello Robert,
object network 10.1.1.1
host 10.1.1.1
object network 2.2.2.2
host 2.2.2.2
nat (dmz,INET source static 10.1.1.1 2.2.2.2
access-list out_in permit ip any host 10.1.1.1
access-group out_in in interface INET
Rate helpful posts
Julio