Hi Aditya,

Thanks for replying.  It looks like I don't have that command available to me. Please see below:

FW14FortWayne-SH5505(config)# $ nat (inside,outside) source dynamic any interface destination static VOIP VOIP ?

configure mode commands/options:
description Specify NAT rule description
inactive Disable a NAT rule
net-to-net Net to net mapping of IPv4 to IPv6
service NAT service parameters
<cr>

It appears to be the "dynamic" keyword that is preventing me from using the "route-lookup" command.  If I change that to static, I am able to use the route-lookup command. However, I don't know what kind of behavior will be seen for the phones if I change that.

FW14FtWayne-SH5505(config)# nat (inside,outside) source static any interface destination static VOIP VOIP ?

configure mode commands/options:
description Specify NAT rule description
inactive Disable a NAT rule
net-to-net Net to net mapping of IPv4 to IPv6
no-proxy-arp Disable proxy ARP on egress interface
route-lookup Perform route lookup for this rule
service NAT service parameters
unidirectional Enable per-session NAT

What if I create an object group specifying my LAN subnet and use that instead of "any" in the source?  Would that allow me to use the static keyword in the source successfully and ultimately allow the use of route-lookup? Or would "interface" also need to be changed to a static external address in the NAT statement?

Hi Dean,

Can you share the output of show run route ?

Also are we using any IP SLA to track the interfaces ?

Regards.

Aditya

Please rate helpful posts.

Hi All,

Sorry so late.  inside,any appears to work, as long as the route lookup will be performed by default even though I cannot specify it via the command.

Actually, I take that back.  Trying "any" I get the following:

ciscoasa(config-network-object)# nat (any,any) after-auto source static ALL-VO$
ERROR: "interface" keyword is not allowed when translated interface is any