policy and static NAT
Posted on 2013-10-25
NAT on an ASA 8.2.5 code.
I have a policy based NAT below that translates 22.214.171.124 to appear as 10.20.20.20 when it initiates traffic to 10.10.10.10
access-list nat123 extended permit ip host 126.96.36.199 host 10.10.10.10
nat (dmz) 1005 access-list nat123
global (inside) 1005 10.20.20.20
I have the below static NAT that translates the destination of 10.20.20.20 to 188.8.131.52 when traffic is received on the inside interface.
static (dmz,inside) 10.20.20.20 184.108.40.206 netmask 255.255.255.255
My question, is there a way I can accomplish both with just 1 STATIC NAT? Can I add something to the end of the static NAT to make it apply the other way (when 220.127.116.11 initiates the traffic)? Or would both be needed to do the source and destination NAT. Assume that I can't route 18.104.22.168 in my internal network and that's why I am doing this.