02-13-2015 09:51 PM - edited 03-11-2019 10:30 PM
I'm totally confused by Cisco documentation regarding Static PAT, as I can see mapping for certain hosts from outside global to the inside local.
All I want to Apply is using one public IP address and using Static PAT as below
static (DMZ,outside) tcp 195.21.40.133 smtp 192.168.50.10 smtp netmask 255.255.255.255
static (DMZ,outside) tcp 195.21.40.133 https 192.168.50.13 https netmask 255.255.255.255
Using the above config when testing SMTP server, I found that traffic going out is not using the IP address 195.21.40.133 rather it is using the outside interface ip 195.21.40.132.
According to Cisco's documentation there's an ACL prerequisite for Static PAT. I didn't understand that well.
I hope someone can better describe the static PAT, specially in my scenario.
Solved! Go to Solution.
02-14-2015 03:27 AM
You are right, the documentation is misleading.
When it says an acl is needed for static PAT I think it means for static policy PAT because if you then look at the examples static PAT does not use an acl.
Your configuration should work as I have used that many times before.
Can you post your full configuration removing any sensitive information.
Jon
02-14-2015 03:27 AM
You are right, the documentation is misleading.
When it says an acl is needed for static PAT I think it means for static policy PAT because if you then look at the examples static PAT does not use an acl.
Your configuration should work as I have used that many times before.
Can you post your full configuration removing any sensitive information.
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide