Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Nat - Same IP but diffrent routes through diffrent DMZs

Hi folks!

The following is my network:

Internet

|

PIX --- DMZ---Cisco3640--Pvt WAN Link----Cisco 3640--

|

Host

|

Server Zone

To ensure that I make some servers available on the Internet and across the WAN Link, I advertize the servers on the DMZ and Intrnet using Static command.

These servers also have to initiate connection to Replication servers, one on the Internet and the other on the other end of the WAN link. for this I need to use the NAT commnad.

i.e.

if x.x.x.x/27 is my Server IP (inside)

and y.y.y.y/24 is the DMZ zone

and z.z.z.z/24 is the Internet zone (outside)

then I need to nat for each zone as the routes are different to reach diffrent servers.

global (outside) 1 z.z.z.10

global (dmz) 2 y.y.y.10

nat (inside) 1 x.x.x.x 255.255.255.255

nat (inside) 2 x.x.x.x 255.255.255.255

In effect, I want to NAT the same IP to diffrent DMZs as diffrent GLOBAL ips. I am getting a Duplicate NAT entry. How do I overcome this ?

Any help on this is appreciated. Thanks.

1 REPLY
Cisco Employee

Re: Nat - Same IP but diffrent routes through diffrent DMZs

Hi,

You said that you are using static, but in the exmple you are using NAT, which one are you using?

for your particular problem of duplicate NAT

try the following

global (outside) 1 z.z.z.10

global (dmz) 1 y.y.y.10

nat (inside) 1 x.x.x.x 255.255.255.255

Thanks

Nadeem

91
Views
0
Helpful
1
Replies