Let me preface this by saying that I do not have control over our router and getting any configuration changes would be problematic. (strange but true)
We currently have four subnets w/public IPs connected to 4 of the router ports. We are considering introducing wireless and, out of concern for conserving our addresses, are considering using private IPs nated to our current public IPs.
Looking at an ASA 5550, is there a way to configure it such that traffic originating from a particular private subnet is nated through a specific outside port of the ASA to the gateway address on the router?
Thanks for the answer, but it seems some clarification is necessary.
I have four outside ports (out1-out4) and four inside ports (in1-in4).
The outside ports are configured with public IP addresses on the same subnet as the router port to which they are attached.
The inside ports are configured with private IPs (gateway for clients on private subnets). The client addresses on the private networks are natted corresponding to a specific interface e.g "in1" addresses are natted to the pool of public addresses in the "out1" pool.
I was making the assumption that in the course of being natted, a packet would be forwarded from the outside port to the next hop on the router w/o need for running a routing protocol and then get routed to its destination.
Or, that it was possible to configure a default route for each network such as "route out1 0 0 x.x.x.x (routerIP1)" and "route out2 0 0 x.x.x.x (routerIP2)".
Adding the global default route passes traffic, but then I'm only taking advantage of a small percentage of available bandwidth.
Is there any work around to get traffic from 4 private subnets routed onto 4 corresponding public networks when the only info in the routing table is comprised of direct connections or static routes.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...