Solved: You are right, the

Rahmat Ullah · ‎02-13-2015

I'm totally confused by Cisco documentation regarding Static PAT, as I can see mapping for certain hosts from outside global to the inside local.

All I want to Apply is using one public IP address and using Static PAT as below

static (DMZ,outside) tcp 195.21.40.133 smtp 192.168.50.10 smtp netmask 255.255.255.255
static (DMZ,outside) tcp 195.21.40.133 https 192.168.50.13 https netmask 255.255.255.255

Using the above config when testing SMTP server, I found that traffic going out is not using the IP address 195.21.40.133 rather it is using the outside interface ip 195.21.40.132.

According to Cisco's documentation there's an ACL prerequisite for Static PAT. I didn't understand that well.

I hope someone can better describe the static PAT, specially in my scenario.

Jon Marshall · ‎02-14-2015

You are right, the documentation is misleading.

When it says an acl is needed for static PAT I think it means for static policy PAT because if you then look at the examples static PAT does not use an acl.

Your configuration should work as I have used that many times before.

Can you post your full configuration removing any sensitive information.

Jon

View solution in original post

Jon Marshall · ‎02-14-2015

You are right, the documentation is misleading.

When it says an acl is needed for static PAT I think it means for static policy PAT because if you then look at the examples static PAT does not use an acl.

Your configuration should work as I have used that many times before.

Can you post your full configuration removing any sensitive information.

Jon

Static PAT problem