policy and static NAT
Posted on 2013-10-25
NAT on an ASA 8.2.5 code.
I have a policy based NAT below that translates 184.108.40.206 to appear as 10.20.20.20 when it initiates traffic to 10.10.10.10
access-list nat123 extended permit ip host 220.127.116.11 host 10.10.10.10
nat (dmz) 1005 access-list nat123
global (inside) 1005 10.20.20.20
I have the below static NAT that translates the destination of 10.20.20.20 to 18.104.22.168 when traffic is received on the inside interface.
static (dmz,inside) 10.20.20.20 22.214.171.124 netmask 255.255.255.255
My question, is there a way I can accomplish both with just 1 STATIC NAT? Can I add something to the end of the static NAT to make it apply the other way (when 126.96.36.199 initiates the traffic)? Or would both be needed to do the source and destination NAT. Assume that I can't route 188.8.131.52 in my internal network and that's why I am doing this.