Hi all,
I am following cisco configuration guide to deploy Expressway MRA feature. Basic on the requirement, we need to have NAT reflection on the external FW (FW A) as the following photos.
My question is that : shall we have an NAT on the internal FW (FW B) translating the expressway-E public IP 64.100.0.10 to 10.0.10.3? We assume that all the routing and also have the one-to-one NAT on FW A. Thanks~
This deployment consists of the following elements:
■Single subnet DMZ (10.0.10.0/24) with the following interfaces:
—Internal interface of firewall A – 10.0.10.1
—External interface of firewall B – 10.0.10.2
—LAN1 interface of Expressway-E – 10.0.10.3
■LAN subnet (10.0.30.0/24) with the following interfaces:
—Internal interface of firewall B – 10.0.30.1
—LAN1 interface of Expressway-C – 10.0.30.2
—Network interface of Cisco TMS – 10.0.30.3
A static 1:1 NAT has been configured on firewall A, NATing the public address 64.100.0.10 to the LAN1 address of the Expressway-E. Static NAT mode is enabled for LAN1 on the Expressway-E, with a static NAT address of 64.100.0.10.