Question About sh nat

aderonaderon CISSP, CCNA:S, CCNA:R&S, AWS:CSA Assoc, Sec+, Lin+, A+, Net+, Proj+Member Posts: 404 ■■■■□□□□□□
I've realized that I rely a little to heavily on sh xlate and am trying to improve my knowledge of sh nat.


From the sh nat output below, I can see that there is a NAT policy that indicates that there is a static mapping for traffic coming from DMZ-Srv into the ASA at the interface named "dmz" and leaving the ASA out the interface named "outside" that will translate the source IP to 192.168.1.100. But, what I don't understand is what specifically the keyword "source" means in the output?


(dmz) to (outside) source static DMZ-Srv 192.168.1.100




When configuring this I didn't need to specify "source" anywhere in the command, I just simply entered the configuration for the network object (DMZ-Srv) and then added static NAT to 192.168.1.100


object network DMZ-Srv
host 192.168.0.1
nat (dmz,outside) static 192.168.1.100
2019 Certification/Degree Goals: AWS CSA Renewal (In Progress), M.S. Cybersecurity (In Progress), CCNA R&S Renewal (Not Started)
Sign In or Register to comment.