Policy Nat

Unanswered Question
Feb 21st, 2008
User Badges:

I am wondering if below configuration is possible , Supposing hostA is behind pixA firewall wants to communicate to HostB behind Pix B , source IP ( should be Natted to ,however if it needs to connect to internet it can go as ( should be true on Host B also ,Is it possible to accomplish by policy Nat and without having to use static command .

Any help will be greatly appreciated

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)

( should be Natted to

This should work.. Try this on A...

access-list pnat extended permit ip host host

static (inside,outside) access-list pnat

nat (inside) 1

global (outside) 1 interface

This is all assuming that you have the routing setup correctly to route the addresses.

ciscosom Thu, 02/21/2008 - 11:41
User Badges:

Thanks a ton , this is what i was looking for .


This Discussion