Hi
Security is not my best topic so I have a slight Natting dilemma.
We are allowing 2 supplier external IPs (group External_Suppliers) access to our internal domain controller (10.10.10.1) on port 636 (ldaps). 10.10.10.1 is natting to 27.2.2.25. So we have a nat for this as below
nat (inside,outside) source static 10.10.10.1 27.2.2.25 destination static External_Suppliers External_Suppliers
Now we have another domain controller (10.10.10.2) that we want the supplier to have access to on the same port (636 ldaps). Can I just create an object (Domain_Controllers) to group the domain controller IPs and add them to the NAT like this:
nat (inside,outside) source static Domain_Controllers 27.2.2.25 destination static External_Suppliers External_Suppliers
Consider the necessary access rules are already in place. Will the above work as the destination port for both is ldaps, or will I need to NAT to another external IP from my available ranges.
Thanks