Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
256
Views
0
Helpful
2
Replies

Static Policy

patricia20
Level 1
Level 1

‎04-09-2008 05:07 PM - edited ‎03-11-2019 05:29 AM

Hi,

I need to NAT an internal server and allow only certain ports open. After creating access-lists for these ports, should I still enable PAT (for the said ports) in the NAT configuration?

Thanks!

Labels:
0 Helpful
2 Replies 2

husycisco
Level 7
Level 7

‎04-10-2008 03:41 AM

Hi Patricia,

If you applied a one-to-one NAT like following

static (inside,outside) publicip localip netmask 255.255.255.255

Then you dont need to specify these ports individually.

But if you applied PAT, you should forward these ports as following

static (inside,outside) tcp interface portno localip portno netmask 255.255.255.255

Regards

0 Helpful

patricia20
Level 1
Level 1
In response to husycisco

‎04-10-2008 12:05 PM

Ok, thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card