Is it possible to route two different static translations from the same subnet on the outside from the same Internet router to 2 different LANs behind 2 different Pixes? If not, does anyone have another suggestion?
1. It will work if you are using NAT or a static map for your internal IPs and the translated IP will be on the 192.168.1.x subnet (and then the router has that route -directly connectd). If the NAT IP were on a different subnet, it would fail.
2. Yes it is possible to have that scenario, as the 2 PIXs will only answer/translate to the IPs it knows about. As long as the 2 PIXs don't have the same translation rules (both would answer for the same destination), you are fine. They wouldn't know about each other or care.
An alternative to this, and one that increases redundancy, is to have the PIXs in failover and have all rules in the same place (downside is you need failover licence and more interfaces - 2 per subnet).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...