Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
474
Views
0
Helpful
2
Replies

Cisco ASA virtual NAT

Go to solution
Sudhir Menon
Level 1
Level 1

‎02-04-2009 09:34 AM - edited ‎03-11-2019 07:45 AM

Hi ,

I have a question about ASA which i happen to come across

Is it not possible to NAT with logical IP addresses or IP addresses for which physical interfaces are not configred on the ASA.If not then how can i NAT for multiple IP pools of my ISP for which physical interface does not exist on my firewall

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
cisco24x7
Level 6
Level 6

‎02-04-2009 09:52 AM

As long as you upstream router(s) route

down these IP pools to the ASA, this will

work just fine.

Let say your "outside" interface is

1.1.1.1/24 but you want to static NAT

129.174.1.0/24 to 192.168.1.0/24 on the ASA:

on the upstream router:

ip route 129.174.1.0 255.255.255.0 1.1.1.1

on the ASA:

static (i,o) 129.174.1.0 192.168.1.0 /24

Easy right?

View solution in original post

0 Helpful
2 Replies 2

Go to solution
cisco24x7
Level 6
Level 6

‎02-04-2009 09:52 AM

As long as you upstream router(s) route

down these IP pools to the ASA, this will

work just fine.

Let say your "outside" interface is

1.1.1.1/24 but you want to static NAT

129.174.1.0/24 to 192.168.1.0/24 on the ASA:

on the upstream router:

ip route 129.174.1.0 255.255.255.0 1.1.1.1

on the ASA:

static (i,o) 129.174.1.0 192.168.1.0 /24

Easy right?

0 Helpful

Go to solution
Sudhir Menon
Level 1
Level 1
In response to cisco24x7

‎02-07-2009 08:11 PM

thanx that was very useful information

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card