troubleshooting Question

Cisco ASA 5510- need 2 NAT statements for 1 internal server...

Avatar of cansib
cansib asked on
Hardware Firewalls
5 Comments1 Solution730 ViewsLast Modified:
I have a Cisco ASA 5510 firewall and I use ASA version 8.0(3) and ASDM version 6.1(1).  I have a site-to-site vpn tunnel setup with one of our software vendors.  The vpn tunnel is so that the vendor can remote into our server for support.  The way the vpn tunnel is setup, the internal ip of the server is NAT'd to a private ip for communicating with the vendor.  This static NAT is causing this machine to not be able to communicate over the internet since it is translated to that private ip going over the outside interface.  I now have a server on the internet that I know the ip address for that this machine needs to be able to send files to over port 22.  Can I add another NAT statement that says something like, when this internal server wants to communicate with this outside server (on port 22), then apply the default NAT statement which translate internal ip's to the outside ip (internet ip) of the firewall?  Can this be done?  Thanks!

Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 5 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 5 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros