Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

NAT using different IP range than on outside interface

I have a need to use another class C subnet for outbound NAT purposes, but this new range isn't bound to the outside interface. Is this possible?

Outside interface IP: 1.1.1.1/24

Inside interfac ip: 10.1.1.x/24

New block: 192.168.1.0/24

New inside hosts needing nat on new range: 10.14.1.x/24

So basically I want to use a range of ip's not bound to and interface to use as the PAT'd address when the packet leaves the ASA. What would this config look like?

Thx

1 REPLY
Gold

Re: NAT using different IP range than on outside interface

Yes it is possible (atleast with 8.2) but only for inbound connections, otherwise you would have a routing problem since it does not support policy based routing.

Just configure it as you would do a normal static but with the address from the other net and it will work just fine.

do not forget to allow the traffic in an ACL

Good luck

HTH

248
Views
0
Helpful
1
Replies