Hi,

I have a Cisco ISR 4331 appliance and this is my environment

My goal is to be able to take communication between two PC without they know their real IP address. Therefore, I'd want that two PC should be able to communicate without setting default gateway on Pc.

I have to implement both nat type (inbound and outbound) on both interface fa0/0 and fa0/1

Specifically I'd like that:

1. All packet that flow outside Fa0/0 should be natted with ip 10.11.1.91
2. All packet that flow outside Fa0/1 should be natted with ip 192.168.8.253
3. PC 10.11.1.100 should be seen outside with IP 192.168.8.252 (inbound port forwarding)
4. PC 192.168.8.100  should be seen outside with IP 10.11.1.93  (inbound port forwarding)

First I have to see if it's possible apply this configuration. I've already checked and NVI feature isn't supported by Cisco XE running on my router.

I've tested that is able to nat outbound and inbound on same interface, although I need to apply following configuration:

Suppose that PC 10.1.1.100 have to send packet to 192.168.8.100:

1. PC 10.1.1.100 send packet to Natted IP 10.1.193
2. Packet flow inside Fa0/0 router interface and router un nat packet (10.1.1.193 -> 192.168.8.100)
3. Router send packet outside interface Fa0/1. I'd want that packet contains:

                                  Source IP: 192.168.8.254 (I'd want apply NAT on source IP only)

                                  Destination IP: 192.168.8.100