NAT to non directly connected network

Unanswered Question
Feb 4th, 2008

Can you NAT to a network that is not directly connected to one of your firewall ports?

Ie...

Firewall Outside 61.44.120.1

Firewall Inside 10.101.1.2

Internal Multilayer Vlan1 10.101.1.1

Internal Multilayer Vlan2 10.101.2.1

Can you NAT incoming traffic for 61.44.120.1 to 10.101.2.1? Assuming there is a route in place on the firewall to the 10.101.2.1 network.

Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JORGE RODRIGUEZ Mon, 02/04/2008 - 09:36

I completely agree with Adam, as well as your assumption that as long there is a route from PIX to these hosts on your multilayer switches you should be able to NAT public IP to private net local hosts, I have done it before with no issues.

Rgds

Jorge

Actions

This Discussion