Hello all, hoping to get some help in one of my configurations. So my topology is we have a inside network PLC on a 192.168.1.50 address. This address is local only so that the PLC can communicate with its other accessory devices on the 192.168.1.x network. All the inside devices use 192.168.1.2 as a gateway to the PLC (the 192.168.1.50). We've set up a VLAN 999 on all of our IE Switches access ports so that the devices could talk across switches back to the PLC. 

The PLC needs to be able to reach our outside network. 10.49.152.x (VLAN 152) to be able to communicate. So I setup  a l2nat and translated the 192.168.1.50 address to 10.48.152.6 address so we could see it now.

The problem is now that I've setup this translation, I'm assuming because I've changed the access port to vlan 152 on the PLC Interface. The PLC is visible to us now on the outside network, but all of the accessory devices can no longer see it.

Here is my configuration below: My question is what am I missing so that this PLC can be visible to both its private network and its outside public? If I change the PLC interface to 999 again. I can no longer see the PLC outside address, but if i change it to 152, I can see it but the accessory devices can't. Can anyone help?

L2 NAT Instance Config:

l2nat instance PLC_NAT
permit all
fixup all
outside from host 10.49.152.1 to 192.168.1.2 gateway
outside from host 10.49.152.6 to 192.168.1.50
inside from host 192.168.1.50 to 10.49.152.6

Uplink Interface Config:

switchport mode trunk
l2nat PLC_NAT 152
storm-control broadcast level 3.00 1.00
macro description cisco-ethernetip

PLC Interface Config:

switchport access vlan 152
switchport mode access
storm-control broadcast level 3.00 1.00
macro description cisco-ethernetip

Accessory Devices Interface Configs:

switchport access vlan 999
switchport mode access
storm-control broadcast level 3.00 1.00
macro description cisco-ethernetip