Sorry for the OT but I am banging my head in the documentation.
In ASA 8.3 and later is it possible to use object-groups to do standard
PAT? The documentation seems to make it seem so but I can't find any
examples. The examples all just use plain Objects (not object-groups). When
I try a similar syntax under Object groups I don't see the same options.
ASA(config-network-object)# nat ?
network-object mode commands/options:
( Open parenthesis for (<real_if_name>,<mapped_if_name>) pair where
<real_if_name> is the prenat interface and <mapped_if_name> is
the
postnat interface
dynamic Specify NAT type as dynamic
static Specify NAT type as static
ASA(config-network-object-group)# nat ?
configure mode commands/options:
( Open parenthesis for
(<internal_if_name>,<external_if_name>)
pair where <internal_if_name> is the Internal or prenat
interface and <external_if_name> is the External or
postnat
interface
<1-2147483647> Position of NAT rule within before auto section
after-auto Insert NAT rule after auto section
source Source NAT parameters
What I am trying to do is PAT a bunch of different subnets into the same
external IP without having to create an object for each individual subnet.
The subnets aren't contiguous so I can't just use a bigger mask or a range.
Thank you,
-- Marc Abel CCIE #35470 (Routing and Switching) Blogs and organic groups at http://www.ccie.netReceived on Tue Sep 18 2012 - 13:09:50 ART
This archive was generated by hypermail 2.2.0 : Mon Oct 01 2012 - 06:40:29 ART