cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1301
Views
0
Helpful
2
Replies
Highlighted
Beginner

Static NAT on ASA - to domain name not IP?

  Hello,

I've a problem I've not encountered before.

I need to set up a VPN tunnel from an ASA 8.4 to a cloud provider, the problem is the IP address of the server in the cloud isn't fixed, it's a domain name

Is it possible to use a static nat to a FQDN instead of an IP address

eg

object network test1

host 10.1.1.1

object host test2

host 20.1.1.1

NOT

nat (inside,outside) source static test1 test1 destination static test2 test2 no-proxy-arp route-lookup

BUT INSTEAD

nat (inside,outside) source static test1 test1 desination static domain_name domain_name etc

The remote IP address is actually an elastic load balancer in Amazon's Cloud Service

           

Any help appreciated.

Regards Tony

2 REPLIES 2
Highlighted
Hall of Fame Guru

You should be able to do this by specifying the "dns" parameter at the end of your nat command. See the command reference and configuration guide.

Highlighted

Many thanks for taking the time to reply Marvin, I'll certainly look into it

Regards Tony