Posted on 2011-03-18
Last Modified: 2012-08-13
I know how to do a one for one static NAT on a cisco asa...But, how do I do a Nat Pool on a Cisco ASA for a /27 subnet?
Question by:cisco_pro30
  • 4
  • 3
LVL 35

Expert Comment

by:Ernie Beek
ID: 35166382
You mean from the in- to the outside or vice versa? You want outgoing traffic to be natted to multiple publics?
Could you elaborate?

Author Comment

ID: 35166411
I have a inside /27 subnet that I want natted to one ouside address.  so one public natted to mutiple private (inside addresses)
LVL 35

Accepted Solution

Ernie Beek earned 500 total points
ID: 35166546
Well, you can't NAT one public address to multiple private addresses. You can forward ports on a single public address to multiple private addresses though. If that's what you're looking for then use:
static (inside,outside) tcp outside_ip port_number inside_ip port_number netmask

So, for example forward WWW to one host and RDP to another:

static (inside,outside) tcp 80 80 netmask
static (inside,outside) tcp 3389 3389 netmask
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.


Author Comment

ID: 35166637
This was exactly what I was looking for...Thank you

Author Closing Comment

ID: 35166642
Perfect answer
LVL 35

Expert Comment

by:Ernie Beek
ID: 35166653
You're welcome. Don't forget to open the ports for the public address in the access-list as well :)
LVL 35

Expert Comment

by:Ernie Beek
ID: 35166660
Thx, for the points :)

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Radius ASA Authentication Failed 4 81
Line cards, Supervisor, Control plane 7 52
Guest Wi-Fi Time out 3 28
Cisco 2960 unable to add SFP modules to device 9 63
How to configure Site to Site VPN on a Cisco ASA.     (version: 1.1 - updated August 6, 2009) Index          [Preface]   1.    [Introduction]   2.    [The situation]   3.    [Getting started]   4.    [Interesting traffic]   5.    [NAT0]   6.…
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question