07-09-2013 04:06 PM
Hello,
I've a problem I've not encountered before.
I need to set up a VPN tunnel from an ASA 8.4 to a cloud provider, the problem is the IP address of the server in the cloud isn't fixed, it's a domain name
Is it possible to use a static nat to a FQDN instead of an IP address
eg
object network test1
host 10.1.1.1
object host test2
host 20.1.1.1
NOT
nat (inside,outside) source static test1 test1 destination static test2 test2 no-proxy-arp route-lookup
BUT INSTEAD
nat (inside,outside) source static test1 test1 desination static domain_name domain_name etc
The remote IP address is actually an elastic load balancer in Amazon's Cloud Service
Any help appreciated.
Regards Tony
07-09-2013 09:05 PM
You should be able to do this by specifying the "dns" parameter at the end of your nat command. See the command reference and configuration guide.
07-10-2013 11:19 AM
Many thanks for taking the time to reply Marvin, I'll certainly look into it
Regards Tony
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: