Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
397
Views
0
Helpful
1
Replies

Are these NAT commands correct?

isaiahhavoc
Level 1
Level 1

‎11-25-2019 12:48 PM

I'm a bit of a tyro when it comes to NAT configuration...

This is my topology

topology.pngThis is what I'm trying to accomplish

Step 1:Let all “hosts” on inside network be allowed to be translated for NAT and use outside interface for public address.

Step 2:Create a static NAT for your DMZ server at 172.16.P.2. Use the “globaladdress” of192.168.P.100 Where P is your respective Pod Number (either 1 or 2)

Step 3:Create a static NAT for your inside server at 10.0.P.11. Use the “globaladdress” of192.168.P.150 Where P is your respective Pod Number (again either 1 or 2)

 

I did the commands

1) object network inside
subnet 10.0.2.0 255.255.255.0
nat (inside, outside) dynamic interface

2)object network insideserver
host (iphere)
nat (inside, outside) static 192.16.2.150

(and repeated for dmz server)

 

Does this look right? Trying to verify before I continue. Thanks everyone. :)

 

 

 

 

 

Labels:
0 Helpful
1 Reply 1

paul driver
VIP
VIP

‎11-25-2019 01:03 PM

Hello
This is a class room project correct?
Is the router in the middle classed as the public router, if so by the looks of it that router and ASA P/Q are sharing the same subnet or is this typo in the topology you've posted?

 

This 192.168.P..x Is this a subnet you wish to use for you inside global addressing?


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card