NAT doubt in ASA

Answered Question
Sep 22nd, 2010

Hi,

Is it possible to change the source IP and the target IP of the same  packet that arrived on any of the ASA interface? ( in this case outside )

For example if a packet is reveiced on outside I/F:

soure - a.b.c.d

destination : p.q.r.s

change the source and destination both

source  : a1.b1.c1.d1

Destination : p1.q1.r1.s1   and send it to inside interface.

When packet is retuned  replace the source and destination IP with the original IP and send it back to outside interface.

Is this possible. Any docuemnt or example on cisco.com.

Thanks in advance,

Subodh

I have this problem too.
0 votes
Correct Answer by mirober2 about 6 years 2 months ago

Hi Subodh,

You can setup something like this:

static (inside,outside) p.q.r.s p1.q1.r1.s1 netmask 255.255.255.255

static (outside,inside) a1.b1.c1.d1 a.b.c.d netmask 255.255.255.255

Hope that helps.

-Mike

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
mirober2 Wed, 09/22/2010 - 09:44

Hi Subodh,

You can setup something like this:

static (inside,outside) p.q.r.s p1.q1.r1.s1 netmask 255.255.255.255

static (outside,inside) a1.b1.c1.d1 a.b.c.d netmask 255.255.255.255

Hope that helps.

-Mike

bapatsubodh Wed, 09/22/2010 - 09:54

Hi,

Thanks for your prompt reply. Do we have any support document on cisco.com or an example on cisco.com that can show this situation.

Thanks,

Subodh

Actions

This Discussion