cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

376
Views
0
Helpful
3
Replies
Highlighted
Beginner

NAT public /24 to private /24

Greetings,

 

I am looking for an easy way to NAT a public /24 to a private /24. Instead of me having to make NAT statements for each IP address it would be great if it was possible to do in one statement.

 

Is has to be one-to-one x.x.x.1 mapped to y.y.y.1, x.x.x.2 to y.y.y.2 etc.

 

Is this possible with ASA 5545 running 9.22, and how?

 

Regards

Kenneth

2 ACCEPTED SOLUTIONS

Accepted Solutions
Highlighted
Participant

Hi Kenneth,

In ASA version 8.3+ you can use Auto NAT to achieve the desired results.

Create one object network for private subnet and one for public subnet. See example:

object network INSIDE
 subnet 10.1.1.0 255.255.255.0
object network OUTSIDE
 subnet 30.1.1.0 255.255.255.0

Then under the private subnet, define the nat statement.

object network INSIDE
 subnet 10.1.1.0 255.255.255.0

 nat (inside,outside) source static INSIDE OUTSIDE

 

HTH

"Please rate useful posts and mark the answer as correct if it solves your issue"

View solution in original post

Highlighted
VIP Mentor

This can be easily done:

object network PUBLIC
 subnet 198.51.100.0 255.255.255.0
object network PRIVATE
 subnet 10.0.1.0 255.255.255.0
 nat (inside,outside) static PUBLIC

You find more info on NAT in the Config-Guide.

View solution in original post

3 REPLIES 3
Highlighted
Participant

Hi Kenneth,

In ASA version 8.3+ you can use Auto NAT to achieve the desired results.

Create one object network for private subnet and one for public subnet. See example:

object network INSIDE
 subnet 10.1.1.0 255.255.255.0
object network OUTSIDE
 subnet 30.1.1.0 255.255.255.0

Then under the private subnet, define the nat statement.

object network INSIDE
 subnet 10.1.1.0 255.255.255.0

 nat (inside,outside) source static INSIDE OUTSIDE

 

HTH

"Please rate useful posts and mark the answer as correct if it solves your issue"

View solution in original post

Highlighted
VIP Mentor

This can be easily done:

object network PUBLIC
 subnet 198.51.100.0 255.255.255.0
object network PRIVATE
 subnet 10.0.1.0 255.255.255.0
 nat (inside,outside) static PUBLIC

You find more info on NAT in the Config-Guide.

View solution in original post

Highlighted

Thank you very much both of you.

/Kenneth

Content for Community-Ad