[c-nsp] 8.3 nat question asa
dalton
daltons at panix.com
Fri Aug 26 02:52:17 EDT 2011
Hi,
I have what is probably a simple question, however, my first occasion of working with new nat config on an asa running 8.3.
I have defined dynamic source nat rule:
Here is the relevant config:
object network obj-10.201.0.0
subnet 10.201.0.0 255.255.0.0
object network obj-2.2.2.102
host 2.2.2.102
nat (inside,outside) source dynamic obj-10.201.0.0 obj-2.2.2.102
What i am looking to do, if possible (i believe it should be) is do a static mapping from the outside of 2.2.2.102:80 to a single ip address in the
10.201.0.0/16 net, for ex 10.201.10.10:80
I'm guessing the syntac would be similar to:
1) add object
object network obj-10.201.10.10
host 10.201.10.10
2) Then add the manual nat rule
nat (outside,inside) source static obj-2.2.2.102 obj-2.2.2.102 destination static obj-10.201.10.10 obj-10.201.10.10
Is that correct? Also, what is the syntax for mapping only port 80 of obj-2.2.2.102 to obj-10.201.10.10?
so, obj-2.2.2.102 port 80 to obj-10.201.10.10 port 80
Any help or tips appreciated!
Thanks alot!
-dalton
More information about the cisco-nsp
mailing list