policy and static NAT
Posted on 2013-10-25
NAT on an ASA 8.2.5 code.
I have a policy based NAT below that translates 220.127.116.11 to appear as 10.20.20.20 when it initiates traffic to 10.10.10.10
access-list nat123 extended permit ip host 18.104.22.168 host 10.10.10.10
nat (dmz) 1005 access-list nat123
global (inside) 1005 10.20.20.20
I have the below static NAT that translates the destination of 10.20.20.20 to 22.214.171.124 when traffic is received on the inside interface.
static (dmz,inside) 10.20.20.20 126.96.36.199 netmask 255.255.255.255
My question, is there a way I can accomplish both with just 1 STATIC NAT? Can I add something to the end of the static NAT to make it apply the other way (when 188.8.131.52 initiates the traffic)? Or would both be needed to do the source and destination NAT. Assume that I can't route 184.108.40.206 in my internal network and that's why I am doing this.