Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX Static NAT issue

My inside network uses a NAT pool to go to the Internet. However I have an external site which will only allow access from a predefined address. How do I allow all users going to this one external address use the same (predefined) address and the nat pool for all other access ?

PIX 525

  • Other Security Subjects
2 REPLIES
Cisco Employee

Re: PIX Static NAT issue

Hi,

I think you can use global (outside) 1 interface and nat (inside) 1 0 0 command , so that all the internal users will be using outside interface ip address as PAT address to go out.

Another words, you have to tell the external site to allow the address coming from outside interface ip address of the pix.

Thanks

Tony Huang

Silver

Re: PIX Static NAT issue

You cannot control NAT based on destination addresses. You can, however, control NAT based on the inside source address using the example the other poster suggested by using an ACL with you [nat] statement.

118
Views
0
Helpful
2
Replies