Static NAT (Static NAT): (One to One)
Steps:
1- Create object group/ Create an object group.
2- Define object IP address/ Determine the IP address of the object.
3- Create NAT statement within object group/ Determine the IP address of the object.
object network WEB_SERVER
host 192.168.3.10
nat (DMZ,outside) static 210.130.3.5
Meaning of configuration commands.
Object network WEB_SERVER
Create a network object named “WEB_SERVER”.
host 192.168.3.10
Specify the server IP address for the “WEB_SERVER” object.
nat (DMZ,outside) static 210.130.3.5
Indicates that server 192.168.3.10 is behind the “DMZ” interface also known as “Real Interface” and should be mapped to “External Interface” known as “Mapped Interface”. When this happens, a server from the Internet can reach the WEB_SERVER object using the IP address 210.130.3.5.
See details here:
–
Instructions for configuring NAT and PAT on Cisco Firewall – Configuring object groups on Cisco ASA
Xem tiếp...
