Is it possible to configure 2 NATs and have them used based on the destination port of the packets?
I'm currently trying to do this with a Cisco 881.
I can see that I can create 2 access-lists based on source and destination IP, but there is no option for source or destination port:
access-list 1 permit 192.168.2.0 0.0.0.255
- If not possible with the 881, is this possible with the ASA 5505?
- If that's the case, can the ASA 5505 be configured as one half of a site-to-site VPN with the other side a Cisco 881?
To explain further, we currently have 2 WAN connections:
- Expensive fiber connection for mission-critical apps (web hosting, mail, accessing customer sites)
- Cheap DSL connection for web browsing (HTTP+HTTPS)
We're using a Linux machine to route based on destination port. Anything for HTTP or HTTPS goes via the cheap DSL connection and everything else goes via the fiber connection.