Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Static mapping of two Public IPs to one internal IP?

Hi Experts,

We have a customer who wants to have static mapping of two public IPs to one internal IP .

These public IPs will use the same service i.e http

Eg: 83.X.X.1 to 10.10.10.1 

      83.X.X.20 to 10.10.10.1

Please let me know if this is possible on Cisco ASA 5520 and if there any workaround to accomplish this.

Thanks!

D

2 ACCEPTED SOLUTIONS

Accepted Solutions
Cisco Employee

Re: Static mapping of two Public IPs to one internal IP?

Hello Deepali,

Then the configuration would be like this

access-list pnat1 permit ip host any

access-list pnat2 permit ip host any

static (inside,outside) access-list pnat1

static (inside,outside) access-list pnat2

Where the is the IP address of the host you want to translated and and are the Public IPs, please try it out and let me know.

Cheers

Mike

Mike

Re: Static mapping of two Public IPs to one internal IP?

This is the commands to accomplish that.

object network web_server
  host 192.168.99.23
object network mappedIP-1
  host 209.165.201.32
object network mappedIP-2
  host 209.165.201.42
nat (dmz,outside) source static web_server mappedIP-1
nat (dmz,outside) source static web_server mappedIP-2
This will allow the DMZ server to get translated to two different IPs on the outside interface.
Federico.
7 REPLIES
Cisco Employee

Re: Static mapping of two Public IPs to one internal IP?

Hello,

It can be done, but the return traffic to the outside will be seen as the first static entry.

Let me know if that will work for you.

Cheers

Mike

Mike
New Member

Re: Static mapping of two Public IPs to one internal IP?

Thanks Mike. When we tried creating 2nd static map from 2nd public IP to the same internal IP, we got an error from the firewall.

Its fine if the return traffic to the outside will be seen as the first static entry.

Thanks!

D

Cisco Employee

Re: Static mapping of two Public IPs to one internal IP?

Hello Deepali,

Then the configuration would be like this

access-list pnat1 permit ip host any

access-list pnat2 permit ip host any

static (inside,outside) access-list pnat1

static (inside,outside) access-list pnat2

Where the is the IP address of the host you want to translated and and are the Public IPs, please try it out and let me know.

Cheers

Mike

Mike

Re: Static mapping of two Public IPs to one internal IP?

Hi,

Maykol is correct but if you upgrade to the new OS 8.3 the ASA will now allow you to do that.

Federico.

Re: Static mapping of two Public IPs to one internal IP?

This is the commands to accomplish that.

object network web_server
  host 192.168.99.23
object network mappedIP-1
  host 209.165.201.32
object network mappedIP-2
  host 209.165.201.42
nat (dmz,outside) source static web_server mappedIP-1
nat (dmz,outside) source static web_server mappedIP-2
This will allow the DMZ server to get translated to two different IPs on the outside interface.
Federico.
New Member

Re: Static mapping of two Public IPs to one internal IP?

Thanks Mike and Federico. I will try these CLIs and let you know how it goes...

New Member

Re: Static mapping of two Public IPs to one internal IP?

Thanks Mike and Federico. Tried both of these solutions and its working fine.

We are running OS 8.1

Thanks again

D

805
Views
0
Helpful
7
Replies