static NAT

suryakant.chavan · ‎08-14-2011

Hi Experts,

I am using my private network on inside interface as 192.168.90.x 255.255.255.0 & I recevied 4 ips 172.16.1.20 , 172.16.1.22, 172.16.1.54,172.16.1.10 from My client.

Now I want to nat . Please tell me what would be the nat statement.

Thanks In advance.

Regards,

Surya.

Jennifer Halim · ‎08-14-2011

What device are you using and what is the version of software?

What ip subnet or ip address are you trying to NAT, and what is the used of the NAT? will this be dynamic NAT or static NAT?

Also, how is the client connected to your device?

A copy of the current configuration would help as well.

suryakant.chavan · ‎08-14-2011

Appreciate your prompt response .

We are usning ASA 5510 , /asa822-16-k8.bin.

we are trying to nat 192.168.90.x 255.255.255.0 with 172.16.1.20 , 172.16.1.22, 172.16.1.54,172.16.1.10.

it will be dynamic nat.

This is production traffic .

Jennifer Halim · ‎08-14-2011

For dynamic NAT, it doesn't make sense to NAT it to 4 different ip addresses, unless you are trying to break your 192.168.90.0/24 subnet into multiple subnets and NAT it accordingly.

Also, what interfaces are you trying to NAT to and from?

I am assuming that 192.168.90.0/24 is connected to "inside" interface, and you are routing towards the "outside" interface. Here is the NAT configuration:

nat (inside) 5 192.168.90.0 255.255.255.0

global (outside) 5 172.16.1.20

With the above configuration, all will be NATed towards 172.16.1.20.

You would also need to check if you are also NATing 192.168.90.0/24 towards the Internet with a public IP. If you are, then for traffic destined to your client only, you would want to NAT to 172.16.1.20, as you don't want to NAT all traffic to 172.16.1.20 even if it's not going towards this particular client.