Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Multiple Static NATs with ASA 8.4.X Code

We have a need for an inside address to have more than one static NAT outside addresses.  I know this wasn't possible before 8.3.X code.  I still can't quite get it to work with 8.4.X code yet.

Here is what I had with 8.2 code.

static (inside,outside) 10.21.197.0 10.17.197.0 netmask 255.255.255.0

our inside network is 10.17.197.X/24.  the current NAT we have in place is 10.21.197.X/24. 

we need to add an additional NAT of 10.22.197.X/24 and I also have networks that will need to hit the address with no NAT. 

I do know the source networks where I need each of the three cases:

from 172.20.X.X I need to hit the inside of 10.17.197.X natively, no NAT.

from 192.168.X.X i need to hit the inside of 10.17.197.X with 10.21.197.X NAT

from 10.10.X.X I need to hit the inside of 10.17.197.X with 10.22.197.X NAT

How can I accomplish this?

Thanks,

Damon

2 REPLIES
New Member

Multiple Static NATs with ASA 8.4.X Code

Damon,

This site should help you:

http://www.thenetworker.co.uk/blog/?p=1

You'll need to create a NO NAT static rule and two TWICE NAT rules defining the 192.168.x.x and 10.10.x.x source nets with the different destination NAT's.

Derek

New Member

Multiple Static NATs with ASA 8.4.X Code

Derek,

thanks for the link.  I will give this a shot this week.

Thanks,

Damon

369
Views
5
Helpful
2
Replies
CreatePlease to create content