Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
594
Views
0
Helpful
1
Replies

STATIC NAT TRANSLATION TO VLAN TWO HOPS FROM ROUTER

nicholasgondwe
Level 1
Level 1

‎12-01-2010 09:34 AM - edited ‎03-04-2019 10:38 AM

Hi

I have a Cisco 1841 router connected to the ISP and I have the LAN side of the router connected to an ASA5510. The ASA5510 is in turn connected to a catalyst switch with 6 VLANs configured on it. The ASA5510 has subinterfaces which are connected to the switch and it is doing intervlan routing as well. The ASA also is doing DHCP for each VLAN and is working fine and the VLANs can reach the internet. One of the VLANs has a mail server. The ROUTER is the one doing NAT and there is NO NAT on the ASA and I do not want any NAT there.

My problem is how can I forward incoming  mail from the internet to my mail server sitting in the VLAN behind the ASA when the NAT is being done on the router connected to the ISP. The mail server is seperated by the ASA which sits between the switch and the router. Please help.

Labels:
0 Helpful
1 Reply 1

Mohamed Sobair
Level 7
Level 7

‎12-01-2010 11:31 AM

Hi,

You still nat exemption on the ASA in order not to translate inside hosts accessing Internet, along with that , you need to make sure that (NO nat-control) is configured and its the default behaviour of ASA.


Now, once that is done, on the router you can easily perform the NAT for the mail server direct IP Address, you should have a route in this case in the router for the mail server and Internal subnet pointing to the ASA outside Interface.

HTH

Mohamed

0 Helpful
Customers Also Viewed These Support Documents