Announcement

Collapse
No announcement yet.

NAT problem on ASA 8.4

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • NAT problem on ASA 8.4

    I want to do NAT as per below requirement. any idea how can i do it

    my firewall has three interfaces
    inside 10.0.0.0/8
    DMZ 172.17.30.0/24
    Outside 62.0.0.0/29

    NAT from inside ---- > 3rd-party DMZ

    Object SERVER has IP 10.50.50.22
    Object SERVER-NAT has IP 172.17.30.22
    Object SERVER-LAN has IP 10.0.0.0/8

    nat (inside,dmz) source static SERVER SERVER-NAT

    nat (inside,dmz) source dynamic SERVER-LAN interface

    the above is fairly simple. the first one is for inbound NAT from the 3rd party DMZ server , the second one is for the LAN users to access the 3rd party DMZ server.

    here is the problem

    i have to build a backup VPN connection on my same firewall to the 3rd party firewall. and i want to use the same natting scheme from inside to outside interface with same IP addresses that i used above. How can i do that.


    comments really appreciated.

    cheers
    Ricky

  • #2
    Re: NAT problem on ASA 8.4

    The same internal and mapped addresses? 8.3 and above does give you the "any" keyword.


    nat (inside,any) source static SERVER SERVER-NAT
    Last edited by auglan; 9th July 2012, 13:50.
    CCNA, CCNA-Security, CCNP
    CCIE Security (In Progress)

    Comment

    Working...
    X