09-22-2010 09:34 AM - edited 03-11-2019 11:43 AM
Hi,
Is it possible to change the source IP and the target IP of the same packet that arrived on any of the ASA interface? ( in this case outside )
For example if a packet is reveiced on outside I/F:
soure - a.b.c.d
destination : p.q.r.s
change the source and destination both
source : a1.b1.c1.d1
Destination : p1.q1.r1.s1 and send it to inside interface.
When packet is retuned replace the source and destination IP with the original IP and send it back to outside interface.
Is this possible. Any docuemnt or example on cisco.com.
Thanks in advance,
Subodh
Solved! Go to Solution.
09-22-2010 09:44 AM
Hi Subodh,
You can setup something like this:
static (inside,outside) p.q.r.s p1.q1.r1.s1 netmask 255.255.255.255
static (outside,inside) a1.b1.c1.d1 a.b.c.d netmask 255.255.255.255
Hope that helps.
-Mike
09-22-2010 09:44 AM
Hi Subodh,
You can setup something like this:
static (inside,outside) p.q.r.s p1.q1.r1.s1 netmask 255.255.255.255
static (outside,inside) a1.b1.c1.d1 a.b.c.d netmask 255.255.255.255
Hope that helps.
-Mike
09-22-2010 09:54 AM
Hi,
Thanks for your prompt reply. Do we have any support document on cisco.com or an example on cisco.com that can show this situation.
Thanks,
Subodh
09-22-2010 09:56 AM
Hi Subodh,
Here is the configuration guide that shows how to do this with an example:
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/nat_static.html#wp1064057
-Mike
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide