Host using NAT for incomming anf PAT for outgoing

Unanswered Question
Mar 16th, 2007

I am trying to setup a host that accepts incomming traffic via its nat'd address, but when contacting other hosts on the internet uses the outgoing iterface ip address.

I have the incomming NAT working but with the access rule etc, but I can not figure out how to have it not use the the incomming nat address for the outgoing traffic also.

I have an asa-5510.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vitripat Fri, 03/16/2007 - 10:54

It is possible. Assuming that the internal server is a TELNET server, you can have following commands in with:

public-ip(for incoming traffic)

private-ip(internal server ip)

static (inside,outside) tcp public-ip 23 private-ip 23

nat (inside) 1 0 0

global (outside) 1 interface

clear xlate

With above commands in, assuming you have correct ACLs in place, all inbound TELNET traffic to public-ip will be directed to private-ip, however, when server itself needs to initiate outbound connection, it will use the IP address on the outside interface IP.

Hope that helps.




This Discussion