Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
573
Views
2
Helpful
7
Replies

is public to public NAT possible?

tachyon05
Level 1
Level 1

‎11-12-2024 04:52 PM

I have traffic flow like shown below -

A Microsoft public IP > a public IP on our DMZ firewall on prem > NAT > an private IP on prem.

Is it possible to configure FW to forward traffic as shown below?

A Microsoft public IP > a public IP on our DMZ firewall on prem > a Google public IP on internet.

7 Replies 7

Flavio Miranda
VIP
VIP

‎11-12-2024 05:05 PM

@tachyon05 

 Do you mean a NAT from Microsoft to DMZ and then another one from DMZ to Google? 

Dont know which ASA version but   you could use the combination of

nat (outside,inside)

nat (inside,outside)

 

0 Helpful

MHM Cisco World
VIP
VIP

‎11-13-2024 04:49 AM

If you use public IP then using IGP with ISP will enough or there is something prevent run IGP with ISP

MHM

0 Helpful

Aref Alsouqi
VIP
VIP

‎11-13-2024 06:07 AM

What do you mean by a Google public IP on the internet?

0 Helpful

Karsten Iwen
VIP
VIP

‎11-13-2024 06:47 AM

First, describe what you want to achieve. There may be other/better ways.

0 Helpful

tachyon05
Level 1
Level 1

‎11-13-2024 08:44 AM

Thanks everyone.  Here is the current traffic flow at a high level -

Cloud provider 1 public IP 1.1.1.1 >> on prem public IP 8.8.8.8 >> on prem firewall NATs this traffic to a on prem server's internal private IP 10.10.10.10.

We want to move the server to cloud provider 2, and it will have a new private IP 172.16.10.10.  Inbound internet traffic destined to a cloud provider 2 public IP 2.2.2.2 will NAT to this server at 172.16.10.10.

The question is would it be possible for cloud provider 1 to access cloud provider 2 via on prem?  Another words, we want the traffic flow to look like this -

Cloud provider 1 public IP 1.1.1.1 >> on prem public IP 8.8.8.8 >> how to configure >> cloud provider 2 public IP 2.2.2.2 >> NATs to 172.16.10.10.

0 Helpful

Aref Alsouqi
VIP
VIP
In response to tachyon05

‎11-14-2024 02:32 AM

Are you using FQDNs or IP addresses to access these services? if you are using FQDNs then I think you just need to switch the public IP of the FQDN DNS entry. That will redirect the traffic to the new public IP without having to send any comms for the IP change. If not, I don't believe there is a way to do what you are trying to achieve as I think this more a routing thing than NAT. Also, if you NAT the traffic associated to provider 1 to a public IP of provider 2 it doesn't mean that the traffic will be routed to provider 2. Hence I don't believe what you are trying to achieve is possible.

0 Helpful

foysalisp
Level 1
Level 1

‎11-13-2024 09:39 AM - edited ‎11-13-2024 09:43 AM

Yes, possible, but it's maybe static IP or Dynamic IP shows you.

Router WAN 1 Public IP and NAT internal Public IP

www.foysalisp.com

My network use this but I am not sure you can try this for test.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card