nat (INSIDE,OUTSIDE) source static obj-172.20.100.140 obj-172.20.100.140 destination static OBJ-200.100.100.200 OBJ-200.100.100.200 no-proxy-arp route-lookup
The above has worked fine for me before in many situations but I had an issue that I couldn't connect to servers with a static NAT because the firewall was trying to get to the Public IP.
Had to change to this NAT method
Make sure you have your object is set up
object network obj-172.20.100.140
host 172.20.100.140
This does the static NAT
object network obj-172.20.100.140nat (INSIDE,OUTSIDE) static 200.100.100.200
This NAT is processed at the right time so internal servers can get to the server but it still has it's static NAT.
No comments:
Post a Comment