Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
FYI.Careful when doing translations all to 1. This is called PAT (Port address translation) a form of NAT. I am doing the same thing even though they say it doesn't work well with multimedia applications since PAT differentiates by port.10.10.10.1 ...
the command nat (dmz) 0 x.x.x.128 255.255.255.240 will disable NAT on that interface. The inside users will have no problem hitting the DNS but a conduit statement need be in place for outside since the security ID will be from lower to higher.
