Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Using the alias command for destination NAT

Hi all - We have a pretty straightforward situation I want to make sure I understand correctly.


We have a firewall that separates our users from a proxy server.  Our clients have set in their host file for


The proxy server is changing to  Instead of reconfiguring all of our clients we want to implement aliasing to nat to on the firewall.


I have two questions:


1.  Is it JUST the alias command needed?  I saw some sample configs which included a static NAT as well.

2.  We have other clients that are going to use the updated DNS which will be correctly converting to


If the DNS server responds to these clients will it also be converted to (causing them to reject the response) or does the alias command keep a state table and only translate coming back in for what it translated going out?


Thanks everyone!

CreatePlease to create content