• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 208
  • Last Modified:

NAT Clarification

I've searched around for the answer to this question, I may have found it but not have understood the answer. I've primarily worked with Linux based firewalls, with some PIX experience.
One Function that I was always able to easily do is what I refer to as a SNAT.
Example Source IP (192.168.1.5) Destination IP(any) Service (RDP:3389) > Change Source to:(1.1.1.3)
This would force 192.168.1.5 to use 1.1.1.3 as it's external IP address only while using RDP:3389, all other traffic would use the default MASQ.
I dont want to port forward 3389 to 192.168.1.5, I want it to use 1.1.1.3 as it's public IP when using the port 3389
Where all other traffic defaults outbound to 1.1.1.2

Is this even possible with a PIX / ASA ?
If so how?
0
jcs5003
Asked:
jcs5003
1 Solution
 
batry_boyCommented:
Yes, you can...it is called policy NAT in the Cisco world.  Here's how:

access-list special_rdp permit tcp host 192.168.1.5 any eq 3389
global (outside) 5  1.1.1.3
nat (inside) 5 access-list special_rdp

0

Featured Post

Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now