Policy Based Destination NAT

Unanswered Question
Jul 26th, 2010
User Badges:

Hi Cisco Experts,

Kindly need your advice on the below;

Setup : Cisco ASA 5520

Any Traffic from any source pointing to Destination IP (Ex: to be NATed (Destination Translated) to The ASA will have route to pointing to the Router's Gateway and the traffic will go outside

It should go out with Same Source IP  and Translated Destination IP (From: to

This sounds like Policy Based Destination NATing.

Your Valuable Suggestions are Appreciated.

Thanks a lot,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Nagaraja Thanthry Mon, 07/26/2010 - 07:00
User Badges:
  • Cisco Employee,


You just need destination NAT.

Static(outside,inside) udp 53 53 netmask

This is assuming that your internal network is either 192.168.10.x or your

hosts are using the ASA as the gateway.

Hope this helps.



jafarsadiq Tue, 07/27/2010 - 05:33
User Badges:

Hi Nagy,

Thanks for your response..

Let me be more specific..

My Host IP: (Source)

My DNS IP: (Destination)

IP to be Translated: (Xlated Destination)

The actual IP address of the DNS is and i dont my LAN users to see this IP. So, we use for users and we translate that to, which will not be visible to users..

Hope you got it..



This request from inside my LAN should be

Nagaraja Thanthry Tue, 07/27/2010 - 05:40
User Badges:
  • Cisco Employee,


The configuration I posted earlier achieves the exact same purpose. will be appearing as for all the internal hosts.



jafarsadiq Tue, 07/27/2010 - 05:46
User Badges:

Hi Nagy,

Thanks a lot..

I am surprised!! is that Simple??

I will check this after working hours on Thursday and update you..




This Discussion