Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA 8.4 NAT static and dynamic with the same public IP

Hi, in ASA 8.4, I need to use to static nat an internal IP with a public IP and use the same public IP to dynamic nat another internal IP:

nat (inside,outside) source static IP1_PRIVATE IP_PUBLIC

nat (inside,outside) source dynamic IP2_PRIVATE IP_PUBLIC

All outgoing connection from IP1_PRIVATE and IP2_PRIVATE should be natted to IP_PUBLIC and all incoming connection to IP_PUBLIC should be forwarded to IP1_PRIVATE: is it correct ?

thank you in advance

greatings

rs

Everyone's tags (2)
3 REPLIES

ASA 8.4 NAT static and dynamic with the same public IP

Hello,

As soon as the inbound connection is using a different port from the connections created for the outbound connection that should work.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Community Member

Re: ASA 8.4 NAT static and dynamic with the same public IP

it's necessary to migrate from a check point solution that allows that.

thanks

Sent from Cisco Technical Support iPhone App

Re: ASA 8.4 NAT static and dynamic with the same public IP

Hello ,

It is completeley difficult that an outbound and inbound connection trough the ASA share the same port because remember that connections innitiaded on your inside host will use a random port so do not worry for that.

Please rate helpful post.

Have a great day,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
695
Views
0
Helpful
3
Replies
CreatePlease to create content