
When deploying a [Network Address Translation (NAT)](/network-address-translation-nat) setup, it is possible to translate addresses that are in a subnet that is not directly connected to the edge device performing the NATting.

This setup is common in complex network topologies where you might have multiple subnets and routers on the internal network. Here's how you can achieve this:

1. **Routing Configuration**: The edge router needs to have a route to the non-directly connected subnet. This can be done through static [routing](/routing) or dynamic routing protocols. The router needs to know how to reach the non-directly connected subnet before it can translate its addresses.
2. **NAT Configuration**: On the edge router, you will configure NAT rules to translate the [private IP addresses](/ipv4-private-ip-address-ranges) from the non-directly connected subnet to a public [IP](/ipv4) address. This configuration is similar to setting up NAT for directly connected subnets, but you'll specify the non-directly connected subnet in your NAT rules.
3. **Ensure Return Traffic**: Make sure that the return traffic from the internet knows how to get back to the non-directly connected subnet. This usually involves configuring appropriate routes on the edge router and possibly other routers in your network.
4. **Access Control Lists ([ACL](/acl)s)**: If there are ACLs in place, ensure they allow the necessary traffic from the non-directly connected subnet to pass through the edge router and vice versa.

While the subnet is not directly connected, as long as the edge router has a route to it and the NAT rules are configured correctly, it can translate the addresses from that subnet. Remember that proper routing and ACL configurations are crucial to make this work.

Links:

https://forum.networklessons.com/t/cisco-asa-static-nat-configuration/817/57?u=lagapides

https://networklessons.com/cisco/asa-firewall/cisco-asa-static-nat-configuration

https://networklessons.com/cisco/asa-firewall/cisco-asa-dynamic-nat-configuration

NAT - translate address not directly connected to edge device

Multicast - Routing Table Timers

Multicast - Source Specific Multicast (SSM)

Multicast - Sparse Mode register suppression timer

Multicast - generating a routing table entry

Multicast - ip igmp join-group vs ip igmp static-group

Multicast - reading the multicast routing table

Multicast - route-map on IOS-XE 16.9.4

Multicast - routing over the Internet

Multicast - troubleshooting multicast routing

Multicast Anycast RP

Multicast Cisco Group Management Protocol

Multicast IGMPv3 include and exclude modes

Multicast IPv4 address space

Multicast MAC addresses

Multicast Mapping Agent and RP placement

Multicast OIL IIF mroute table

Multicast PIM Assert and dense mode

Multicast PIM Auto RP and Mapping Agent single device

Multicast PIM Bidirectional mode traffic between sources and RPs

Multicast PIM Bootstrap (BSR) election

Multicast PIM Designated Router sparse mode

Multicast PIM dense mode

Multicast PIM neighbors are stateless

Multicast PIM send-rp-announce-scope

Multicast PIM sparse mode Rendezvous Point (RP)

Multicast PIM sparse mode

Multicast PIM sparse-dense mode

Multicast PIM with multiple RPs

Multicast PIM with multiple mapping-agents

Multicast PIM-assert forwarder election

Multicast SPT and RPT

Multicast bidirectional PIM advantages

Multicast boundary filtering - filter auto RP

Multicast enabling Bidir in BSR mode

Multicast ip pim autorp listener

Multicast ip pim rp-address override

Multicast load splitting across equal-cost paths

Multicast local subnetwork address range

Multicast mapping IP to MAC addresses

Multicast mapping agent IGMP membership report

Multicast ping on a Nexus device

Multicast using Anycast RP with Auto-RP and BSR

Multicast

NAT - Translation Table

NAT - Twice NAT

NAT - Understanding debug nat detailed output

NAT - Virtual Interface (NVI)

NAT - add-route keyword

NAT - ports used for translation

NAT Extendable on Cisco IOS

NAT Order of Operation

NAT address naming conventions

NAT and IPv6

NAT how port numbers are chosen when using PAT

NAT intra-VRF NAT

NAT port forwarding - specifying outside IP address

NAT prefix-length keyword on nat pool command

NAT vrf-aware

NBAR classifies only established sessions

NETCONF

NHRP - Authentication

NHRP - Destination Protocol Address

NHRP - Holding Time

NHRP - resolution redirect from hub

NHRP show ip nhrp flags

NHRP

NTP - securing with MD5 authentication and a Windows NTP server

NTP poll interval

NTP server and client and the master command

NTP troubleshooting and debugging tools

NTP versions 3 and 4

Native VLANs and untagged frames

NetFlow - Flow Samplers

NetFlow - applying to an SVI

NetFlow - what is a flow

NetFlow local cache size

NetFlow

Network - Discontiguous or Discontinuous

Network - Discontiguous

Network - Example of communication, encapsulation, and decapsulation, between hosts