Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
0
Helpful
2
Replies

ASA NAT Question

ajay_dand
Level 1
Level 1

‎05-22-2007 10:36 PM - edited ‎03-11-2019 03:18 AM

Hi,

I am facing this scenario.

Mail Server on LAN (behind ASA5510) is Pri.IP.Add.1 with SMTP on port 25.

This is to be NATed to Pub.IP.Add.1 from ISP 1 on port 25.

Also to be NATed to Pub.IP.Add.2 from ISP 2 on port 26 (with port forwarding).

Can anybody guide as to how this can be achieved on ASA v7.2?

Thanks in Advance.

Labels:
0 Helpful
2 Replies 2

m.sir
Level 7
Level 7

‎05-22-2007 11:14 PM

If I understand correctly we talk about direction outside-->dmz

so scenario should be following

static (dmz,outside) tcp Pub.IP.Add.1 25 Pri.IP.Add.1 25 netmask 255.255.255.255

static (dmz,outside) tcp Pub.IP.Add.2 26 Pri.IP.Add.1 25 netmask 255.255.255.255

You need also modify the outside ACL

M.

0 Helpful

ajay_dand
Level 1
Level 1
In response to m.sir

‎05-25-2007 08:05 AM

hi M.Sir,

Tried the suggestion. However it doesn't work. It gives me error, when I try creating the second rule, stating the static translation to port 25 already exists. Any other suggestions?

Thanks again.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card