First, it affects traffic from any interface destined to the external interface, so traffic from anything inside will be (i.e., traffic from inside the pool for VPN). Second, it is a static NAT does not really do any translation. The twice NAT syntax specifies the real addresses and addresses assigned in the same line, that is why this command only VPN_POOL All Subnets and repeated. If so, for
Code
Code:
Nat (any, outside) source static All Subnets EXAMPLE_SUBNET destination static VPN_POOL
Static NAT would All Subnets to the address in EXAMPLE_SUBNET those destined VPN_POOL. Or, if you looked like this:
Nat (any, outside) source static All Subnets destination static EXAMPLE_SUBNET
Bookmarks