multiple NAT for 1 source to different destination

RIKLEF GRAETSCH · ‎03-10-2011

Hello,

we have a host 10.10.10.1 who submit data to a server like 10.120.1.1 without NAT.

the same host also submit data to an other server in a different Network at customer side and must use source-nat.

We are using a Cisoc Pix 515, 6.3.3

How can we configure this connection?

10.10.10.1 -> 10.120.1.1 port 80 without nat

10.10.10.1 -> 192.168.10.1 port 80 with nat to address 192.168.10.10

Sorry for this dump question, but we have no idea, how to configure this.

regards

riklef

PAUL GILBERT ARIAS · ‎03-10-2011

try:

access-l nonat permit ip host 10.10.10.1 host 10.120.1.1

nat (inside) 0 access-list nonat

I can't remember if the above acl can be used with TCP and defined ports.

access-l nat1 permit tcp host 10.10.10.1 host 192.168.10.1 eq 80

nat (inside) 1 access-list nat1

global (outside) 1 192.168.10.10

Federico Coto Fajardo · ‎03-10-2011

NAT exemption (NAT 0 ACL) should not include TCP/UDP ports.
Policy NAT should not have deny statements.

Federico.

PAUL GILBERT ARIAS · ‎03-10-2011

Thanks Fede for the aid. I wasn't sure.

RIKLEF GRAETSCH · ‎03-10-2011

Hello,

thanks for your both help. I will try this and post the result.

regards

riklef