cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
1947
Views
0
Helpful
4
Replies
Explorer

How to secure Static NAT translation

Hi all,

Is it possible to secure inbound and outbound of a static nat?

The case is following :

There is an public address A, then a public address B, then a private adress C.

The adress A is the front End to internet, then there is a static nat for B to C.

Thus I want to secure the nat on the B so that not all traffic are permited to or from C.

 

Regards,

Antra

4 REPLIES 4
Enthusiast

Re: How to secure Static NAT translation

are you using PAT in this case for any specific services? or static NAT which maps all ports to internal IP?
VIP Mentor

Re: How to secure Static NAT translation

Hello,

 

--> Thus I want to secure the nat on the B so that not all traffic are permited to or from C.

 

Static NAT takes precedence, so as long as there is a static mapping, all traffic for C will use that entry.

 

What exactly do you mean by 'securing the NAT' ? What traffc do you NOT want to reach C ?

Explorer

Re: How to secure Static NAT translation

Hello,

Static nat 1:1 goes directly to an IP address (a host), so i want to have a way to create an ACL. for this 1:1 nat.

Because the public adress B that is used for the nat is not tied to any interface.

Regards

Hall of Fame Guru

Re: How to secure Static NAT translation

 

Use an acl, NAT should not be used to secure traffic. 

 

Jon

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards