Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
230
Views
0
Helpful
1
Replies

Policy Nating Rule on Cisco Firewall

Prosenjit Chatterjee
Level 1
Level 1

‎05-26-2014 06:35 AM - edited ‎03-11-2019 09:14 PM

Hi ,

I have a Cisco Firewall device. I have a server to the LAN side to the firewall. I want to put a nating rule [static (inside,outside) tcp 2.2.2.2 smtp 192.168.30.202 smtp netmask 255.255.255.255] to the device. But it was giving an error (Error: Static PAT using the interface requires the use of the 'interface' keyword instead of interface IP address).

Please tell me how I can put this rule to my firewall.

 

Please find the attachment for running configuration of the Cisco device.

Note: 1.1.1.1-6.6.6.6 are representing public ip.

Labels:
Preview file
7 KB
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-26-2014 08:34 AM

As the error message notes, your setup is actually static PAT, not policy NAT. Policy NAT would use an access-list. the concept is explained here and the cli syntax is here.

Try:

static (inside,outside) tcp interface smtp 192.168.30.202 smtp netmask 255.255.255.255

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card