Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1281
Views
0
Helpful
1
Replies

NAT Configuration on Cisco ASA 5516-X with FTD

VCsupport17
Level 3
Level 3

‎04-26-2017 11:31 PM - edited ‎03-12-2019 02:17 AM

Hello Support Community,

We have Cisco ASA 5516-X running with FTD. Our ISP provided us a backbone router and range of Public IP address to be able to use in the future for our servers that will be deployed on the DMZ. Our servers on DMZ will be NATed using 1:1 Static NAT.

We have two ASA 5516-X in the network for internal and external. A DMZ switch sits in between the two firewalls. How can I configure or set the range of Public IP address provided by ISP on the external firewall and is there a guide on how to do the 1:1 NAT.

For example ISP provided the public IP range 123.1.2.X - 123.1.2.Z

Pivate IP (DMZ) <-----> Public IP

10.2.1.100 <-----> 123.1.2.3

10.2.1.101 <-----> 123.1.2.4

10.2.1.102 <-----> 123.1.2.5

1 person had this problem
Labels:
0 Helpful
1 Reply 1

singhkulbir29881
Level 1
Level 1

‎05-02-2017 12:49 PM

Hi,

Following is the link having configuration example. Go to Examples for Network Object NAT in a link.

http://www.cisco.com/c/en/us/td/docs/security/asa/asa94/config-guides/cli/firewall/asa-94-firewall-config/nat-reference.html#ID-2091-00000007

Please rate if this is helpful.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card