I have a router that has two physical inside interfaces and one physical outside interface with five sub-interfaces. Four of these sub-interfaces go to privately addressed cloud networks. One sub-interface goes to a publicly addressed cloud network.
I want to configure NAT so that traffic from either inside interface is NAT'd ONLY when going to the one outside sub-interface (the public cloud network).
So my thought is to configure as follows:
int te0
ip nat inside
!
int te1
ip nat inside
!
int te2.1 // interface to the public cloud space
ip nat outside
!
I'd leave outside sub-interfaces te2.2 - te2.5 with no NAT configuration because these go to the privately addressed cloud networks. So when the same source traffic arrives on the router, it will ONLY be NAT'd if the destination network is across the te2.1 public sub-interface. Packets destined for the privately addressed networks on the other sub-interfaces would not be NAT'd.
Is this a valid design? I have not come across this requirement yet.
Thanks