policy and static NAT
Posted on 2013-10-25
NAT on an ASA 8.2.5 code.
I have a policy based NAT below that translates 18.104.22.168 to appear as 10.20.20.20 when it initiates traffic to 10.10.10.10
access-list nat123 extended permit ip host 22.214.171.124 host 10.10.10.10
nat (dmz) 1005 access-list nat123
global (inside) 1005 10.20.20.20
I have the below static NAT that translates the destination of 10.20.20.20 to 126.96.36.199 when traffic is received on the inside interface.
static (dmz,inside) 10.20.20.20 188.8.131.52 netmask 255.255.255.255
My question, is there a way I can accomplish both with just 1 STATIC NAT? Can I add something to the end of the static NAT to make it apply the other way (when 184.108.40.206 initiates the traffic)? Or would both be needed to do the source and destination NAT. Assume that I can't route 220.127.116.11 in my internal network and that's why I am doing this.