i've got this situation:
policy src nat from 1 specific IP to some other, it works, if i contact from 126.96.36.199 --> 188.8.131.52 port 23 i've translated src 184.108.40.206 to 220.127.116.11 and if i contact 18.104.22.168 --> 22.214.171.124 port 22 i've translated src 126.96.36.199 to 188.8.131.52.
But i need also comunication from 184.108.40.206 to my 220.127.116.11 port 23 and 18.104.22.168 to my 22.214.171.124 port 23 translation. I mean 126.96.36.199 contact my real 188.8.131.52 but pointing to address 184.108.40.206 and 220.127.116.11 contact my 18.104.22.168 but pointing to address 10.10.10.10.
so i need a kind of policy NAT from outside world destination point of view.
do you think is possible?
If I understood your requirement correctly you should be able to get this to work by using route maps with static translations. It's a cool feature and I can see it working. Try this and let us know how you did.
ip nat inside source static 22.214.171.124 126.96.36.199 route-map test
ip nat inside source static 188.8.131.52 184.108.40.206 route-map test2
match ip address 150
match ip address 160
access-list 150 permit tcp host 220.127.116.11 host 18.104.22.168 eq 23
access-list 160 permit tcp host 22.214.171.124 host 126.96.36.199 eq 23
For the configuration nat for Outside-to-Inside Support Design follow the steps :
2. configure terminal
3. ip nat pool name start-ip end-ip netmask netmask
4. ip nat pool name start-ip end-ip netmask netmask
5. ip nat inside source rout-map name pool name [reversible]
6. ip nat inside source rout-map name pool name [reversible]