We hv a PIX Firewall with External Interface , Internal Interface, DMZ1 interface.
We are adding one more interface on the PIX as DMZ2.
I want the confirmation, is it possibe to NAT one Private IP to Outside Valid IP as well as With Some other POOL ip defined for DMZ2 traffic.
Purpose behind this is to NAT the traffic coming from internet to server in DMZ1 as well as From DMZ2 to server in DMZ1.
To nat a single IP to multiple public addresses, use these commands:
# nat inside
# global (outside)
I'm not sure if this is the answer you were looking for, but don't hesitate to post again if you want to clarify some details.
I want to nat the private ip to Multiple Valid IP Pools
e.g,Pool1 = 188.8.131.52/29
Pool2 = 184.108.40.206/29
I want to Nat Private IP to Valid IP from Pool1 and one Valid IP from Pool2.
Pls advice if this can be done on a PIX firewall.
You can use policy NAT for achieving this.
If you want access from inside host a.a.a.a to z.z.z.z to use public IP b.b.b.b and all other access to get natted to c.c.c.c
nat (indise) 1 access-list xxx
nat (inside) 2 a.a.a.a 255.255.255.255
access-list xxx permit ip host a.a.a.a host z.z.z.z
global (outside) 1 b.b.b.b
global (outside) 2 c.c.c.c