I was attempting to configure a static NAT statement on a clients firewall which is running code version 8.3.1. I got a message indicating that the old static command had been deprecated, and that the "nat"command needed to be used instead.
What I am trying to do is the following ( in the old format)
Access-list ext PJMNAT permit ip host 192.168.103.59 host 22.214.171.124
Static (inside,WAN) 172.28.6.133 access-list PJMNAT
In other words, I need for traffic to from 192.168.103.59 to be translated to 172.28.6.133 when communicating to 126.96.36.199 on the WAN interface.
Would anyone know how to write this on the ASA running code 8.3.1?
Please confirm that you're trying to PING 188.8.131.52 from 192.168.103.59
And you want it to NAT to 172.28.6.133
Please do a Packet Tracer test to check which process is failing on the ASA.
Let's do two things:
Specify the actual address instead of the object-group just to make sure the NAT rule works.
Post a ''sh run object-group PJMServers'' to make sure the configuration exists (so we can configure it using the object-group)