cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

356
Views
0
Helpful
2
Replies
rravergalileo
Enthusiast

inbound static nat 8.4(2)

Hey Guys,

I'm beating my head and probably missing something simple, I have an ASA running 8.4(2) 5520 trying to do an inbound NAT from the internet to the machine.  THis is what I did

interface INET

security-level 0

interface DMZ

security-level 90

object network 10.1.1.1

host 10.1.1.1

object network 2.2.2.2

host 2.2.2.2

nat (INET,DMZ) source static any any destination static 2.2.2.2 10.1.1.1

I've done several combinations and it always passes through the firewall without nat'ing for some reason??? help ???

2 REPLIES 2
rravergalileo
Enthusiast

Let me clarify, I'm trying to get anything from the internet, entering the INET interface to go to the destination IP of 2.2.2.2 to go to the real IP of 10.1.1.1.

Rob

Hello Robert,

object network 10.1.1.1

host 10.1.1.1

object network 2.2.2.2

host 2.2.2.2

nat (dmz,INET source static 10.1.1.1 2.2.2.2

access-list out_in permit ip any host 10.1.1.1

access-group out_in in interface INET

Rate helpful posts

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Content for Community-Ad