policy and static NAT
Posted on 2013-10-25
NAT on an ASA 8.2.5 code.
I have a policy based NAT below that translates 126.96.36.199 to appear as 10.20.20.20 when it initiates traffic to 10.10.10.10
access-list nat123 extended permit ip host 188.8.131.52 host 10.10.10.10
nat (dmz) 1005 access-list nat123
global (inside) 1005 10.20.20.20
I have the below static NAT that translates the destination of 10.20.20.20 to 184.108.40.206 when traffic is received on the inside interface.
static (dmz,inside) 10.20.20.20 220.127.116.11 netmask 255.255.255.255
My question, is there a way I can accomplish both with just 1 STATIC NAT? Can I add something to the end of the static NAT to make it apply the other way (when 18.104.22.168 initiates the traffic)? Or would both be needed to do the source and destination NAT. Assume that I can't route 22.214.171.124 in my internal network and that's why I am doing this.