Does anyone know if DNS doctoring is supported in the newer 8.3 code? It looks like you can append the dns keyword to a nat translation and if you inpsect DNS the ASA will "un-nat" the connection, according to some of the 8.3 cli documentation I've read, but it doesn't work for me.
nat (inside,outside) source static COMM-USWEB_192.168.10.18 COMM-USWEB_126.96.36.199 dns
Yes. Here is a sample. Have you enabled dns inspection and does the dns traffic go through this ASA?
| DNS rewrite |
static (inside,outside) 172.20.1.10 192.168.100.10 netmask 255.255.255.255 dns
object network obj-192.168.100.10