Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
1
Replies

Firepower NAT

Go to solution
edp-adm
Level 1
Level 1

‎05-21-2024 04:00 PM

I have Firepower 1120 in HA cluster and problem with NAT.

I have IP addresses (A/B/C means subnets, doesn't matter i think for explanation) 

A.10 - main outside public IP **bleep**

A.9 - main gateway

B.x - additional public IPs from ISP (got 5 of them, from B.146 to B.150)

C.x - internal IPs

I need to have A.10 configured as IP of outside interface and i've done it. Routing is set to static 0.0.0.0/0 via A.9. Then I need to NAT C.x to B.x IPs, so I did "nat (vlanX, outside) source static C.2 B.149 no-proxy-arp". ACLs are correct and they doesn't matter right now, "all traffic is trusted". With this config I have no internet access on C.2 system and cannot enter system from outside using B.149 IP **bleep**. 

While my outside IP was B.150 everything was working correctly. 

When I connect system directly to B.146 IP **bleep** it is routing via A.9 gateway.


Is there anything more that I can configure to get it working?

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
1 Reply 1
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card