Question About sh nat

aderonaderon CISSP, CCNA:S, CCNA:R&S, AWS:CSA Assoc, Sec+, Lin+, A+, Net+, Proj+Member Posts: 404 ■■■■□□□□□□
I've realized that I rely a little to heavily on sh xlate and am trying to improve my knowledge of sh nat.

From the sh nat output below, I can see that there is a NAT policy that indicates that there is a static mapping for traffic coming from DMZ-Srv into the ASA at the interface named "dmz" and leaving the ASA out the interface named "outside" that will translate the source IP to But, what I don't understand is what specifically the keyword "source" means in the output?

(dmz) to (outside) source static DMZ-Srv

When configuring this I didn't need to specify "source" anywhere in the command, I just simply entered the configuration for the network object (DMZ-Srv) and then added static NAT to

object network DMZ-Srv
nat (dmz,outside) static
2019 Certification/Degree Goals: AWS CSA Renewal (In Progress), M.S. Cybersecurity (In Progress), CCNA R&S Renewal (Not Started)
Sign In or Register to comment.