i read in the cisco documentation that if i want users on the outside interface (lower security level) telnet to inside interface (higher security level) we should use static with access-list to allow the traffic. Now this is called translation, right?
now, what if you want the same instead that when the users on the outside interface (lower security level) telnet to inside interface (higher security level) we should be able to nat his IP from the one he is originally coming from e.g. 22.214.171.124 to say 172.16.1.53 and let me access the server inside whose IP Address is say 126.96.36.199
i believe there is something to do route because pix will not know 188.8.131.52 untill we define the route because PIX inside is on different ip subnet say 172.16.1.1
why i want this because outside user who is coming from IP 184.108.40.206 needs to be natted or translated to 172.16.1.53 because 220.127.116.11 only accepts connections from 172.16.1.53 therefore if he coming from 18.104.22.168 or anyother IP will not help.
So, Can i do this and how? i have read alot of cisco documents but i can't seems to find any solution or practice closer to my case.
i tried this on our pix and it didn't work
static (inside,outside) 22.214.171.124 172.16.1.53 netmask 255.255.255.255
access-list HELP permit ip host 172.16.1.53 host 126.96.36.199