Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
354
Views
0
Helpful
2
Replies

NAT to non directly connected network

mikedelafield
Level 1
Level 1

‎02-04-2008 09:04 AM - edited ‎03-11-2019 04:58 AM

Can you NAT to a network that is not directly connected to one of your firewall ports?

Ie...

Firewall Outside 61.44.120.1

Firewall Inside 10.101.1.2

Internal Multilayer Vlan1 10.101.1.1

Internal Multilayer Vlan2 10.101.2.1

Can you NAT incoming traffic for 61.44.120.1 to 10.101.2.1? Assuming there is a route in place on the firewall to the 10.101.2.1 network.

Thanks.

Labels:
0 Helpful
2 Replies 2

acomiskey
Level 10
Level 10

‎02-04-2008 09:14 AM

Absolutely!

0 Helpful

JORGE RODRIGUEZ
Level 10
Level 10
In response to acomiskey

‎02-04-2008 09:36 AM

I completely agree with Adam, as well as your assumption that as long there is a route from PIX to these hosts on your multilayer switches you should be able to NAT public IP to private net local hosts, I have done it before with no issues.

Rgds

Jorge

Jorge Rodriguez
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card