Conditional NAT

Conditional NAT

Post by DigitalVin » Sun, 13 Mar 2005 22:15:08


Is is possbile to NAT on a PIX only when traffic is heading for a
specific destination?

We have a specific addressing issue cause of valid Internet address
ranges being used inside and out. If when I send traffic to this one
device I could nat stuff it would solve a routing issue on the way
back.

DiGiTAL_ViNYL (no email)
 
 
 

Conditional NAT

Post by roberso » Mon, 14 Mar 2005 03:11:02

In article < XXXX@XXXXX.COM >,

:Is is possbile to NAT on a PIX only when traffic is heading for a
:specific destination?

Yes.

:We have a specific addressing issue cause of valid Internet address
:ranges being used inside and out. If when I send traffic to this one
:device I could nat stuff it would solve a routing issue on the way
:back.

Look for 'policy nat', which is new in 6.3(2) or so. Quick summary:
create an access list and

nat (inside) ID access-list ACLNAME
global (outside) ID OUTSIDEIP

--
"No one has the right to destroy another person's belief by
demanding empirical evidence." -- Ann Landers