Faust Romero
asked on
NAT configuration on ASA5525X FIREWALL
I need help configuring a NAT for my VPN users. VPN-pool is configured inside my ASA5525X for VPN users.
VPN pool: 192.168.10.0/24
Application IP: 10.10.10.10
Production: 192.168.1.0/24
The Application only accept connections from Production network: 192.168.1.0/24 (Production Interface), so I need to create a NAT for my VPN users (192.168.10.0/24) to reach my Application (10.10.10.10).
ASA info: 5525X, version: 9.4.3.
The application is behind DMZ. DMZ Interface (192.168.100.0/24).
what is the right NAT for my VPN users (192.168.10.0/24) to be translated to Production (192.168.1.0/24) when reaching application 10.10.10.10?
VPN pool: 192.168.10.0/24
Application IP: 10.10.10.10
Production: 192.168.1.0/24
The Application only accept connections from Production network: 192.168.1.0/24 (Production Interface), so I need to create a NAT for my VPN users (192.168.10.0/24) to reach my Application (10.10.10.10).
ASA info: 5525X, version: 9.4.3.
The application is behind DMZ. DMZ Interface (192.168.100.0/24).
what is the right NAT for my VPN users (192.168.10.0/24) to be translated to Production (192.168.1.0/24) when reaching application 10.10.10.10?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
would me IP for host 192.168.1.250, can hold about 10 VPN users simultaneously?
Yes.
ASKER
it is working.
ASKER
I apply
:
nat 5 source static source static VPN_POOL VPN_TO_PROD destination static DMZ_APPLICATION DMZ_APPLICATION
:
nat 5 source static source static VPN_POOL VPN_TO_PROD destination static DMZ_APPLICATION DMZ_APPLICATION
Not sure I understand what you are asking.
ASKER
I meant you commands worked. :)
ASKER