Two Subnet natting in Dmz

Unanswered Question
Mar 31st, 2009
User Badges:

Hi, DMZ address is 200.200.200.0 subnet. What is the meaning to write 192.168.1.0 in DMZ, please help.


global (outside) 10 100.100.100.198 netmask 255.255.255.192

global (dmz01) 10 interface


nat (inside) 10 0.0.0.0 0.0.0.0 0 0

nat (dmz01) 10 200.200.200.0 255.255.255.192 0 0

nat (dmz01) 10 192.168.1.0 255.255.255.0 0 0


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Collin Clark Wed, 04/01/2009 - 07:33
User Badges:
  • Purple, 4500 points or more

Any device from the dmz01 interface with the source IP address of 192.168.1.0 /24 would be NAT'd. I could see this being relative if you have VPN/remote users off that dmz. For example a VPN device on the 10.200.200.0 subnet and it hands out 192.168.1.0 addresses to the VPN users.


Hope that helps.

Actions

This Discussion