troubleshooting Question

Cisco NAT to different external addresses from LAN and DMZ

Avatar of hugodwarf
hugodwarf asked on
Cisco
3 Comments1 Solution333 ViewsLast Modified:
I have a Cisco 515E firewall.  I have an internal network 10.10.10.x, a DMZ of 172.16.1.x and then my external interface.  The external interface is connected to a load balancer.  Now I want the internal network and the DMZ to both do NAT.  However, I want them to NAT to different external addresses.  This way I can sent the traffic through different interfaces on the load balancer based upon what the IP address is.  

I thought by doing Global entries for different NAT's I would get the resolution that I needed.

global (outside) 1 66.15.19.18
global (outside) 2 66.15.19.17
nat (inside) 0 access-list vpn
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
nat (DMZ) 2 0.0.0.0 0.0.0.0 outside 0 0
route outside 0.0.0.0 0.0.0.0 66.15.19.15 1

However it's not working.  So I guess the question is can I do this and if so how?
ASKER CERTIFIED SOLUTION
Les Moore
Systems Architect
Join our community to see this answer!
Unlock 1 Answer and 3 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 3 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros