Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
290
Views
0
Helpful
1
Replies

Configuring routing from internal interface to NATed Public IP on another internal interface.

nataliakram
Level 1
Level 1

‎08-26-2010 11:24 AM - edited ‎03-11-2019 11:31 AM

I have ASA with two DMZ interfaces. I have requirement to route trafic from one device in first DMZ zone to a Public NATed IP of the device in second DMZ zone. Example: first DMZ 10.10.10.0/24, second DMZ 10.10.11.0/24

Device in first DMZ has ip 10.10.10.5

Device in second DMZ has IP 10.10.11.5 NATed to Public IP(75.147.77.125) Requirement for my solution to work device from first DMZ needs to call device in second DMZ by Public IP (not private)

How can i configure my ASA to do that?

Labels:
0 Helpful
1 Reply 1

Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎08-26-2010 04:44 PM

Hi,

static (DMZ2,DMZ1) 75.147.77.125 10.10.11.5

With the above command the following will happen...

When hosts on the DMZ1 try to talk to 75.147.77.125 (which is the NAT IP for the server on DMZ2)... the ASA will send it to the DMZ2 interface (instead than sending it to the outside as it would normally do).

Federico.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card