Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
621
Views
0
Helpful
3
Replies

NAT's problem

pmartiny
Level 1
Level 1

‎04-07-2003 07:32 AM - edited ‎03-09-2019 02:48 AM

Hi,

I apoligize for my bad english!!

I must do a complex VPN between two pix where I must use NAT. However I have a problem with the NAT. In fact I want to relocate my subnet "10.0.1.0/24" towards a virtual network "20.0.1.0/24" . I will do it with this commands :

Global (outside) 20 20.0.1.0

Nat (inside) 20 access-list 120

with access-list 102 permit ip 10.0.1.0 255.255.255.0 20.0.1.0 255.255.255.0

But the pix don't want this commands because with an access-list, it accept only nat 0

I like to know how I can circumvent this problem

Thank you in advance,

Paul Martiny

Labels:
0 Helpful
3 Replies 3

mcelec
Level 1
Level 1

‎04-07-2003 09:54 AM

If you use ¨Global (outside) 20 20.0.1.0¨, it´s not NAT, It´s PAT, instead you can use,

Global (inside) 20 20.0.1.0 255.x.x.x , Then,

Have you tried....

nat (inside) 20 10.x.x.x 255.x.x.x ???

Hope that helps u.

0 Helpful

pmartiny
Level 1
Level 1
In response to mcelec

‎04-07-2003 10:35 PM

thank you for your advice, but i have already try this, but it doesn't run again.

Thank you anyway

Paul Martiny

0 Helpful

mklaphek
Level 1
Level 1

‎04-09-2003 06:52 AM

If you want a one-for-one mapping, why not just use a static:

static (inside,outside) 20.0.1.0 10.0.1.0 netmask 255.255.255.0

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents