I would like to set my ASA 5505 to only NAT a range of addresses, for example static NAT 172.17.47.16 - 172.17.47.255 on my inside network, to addresses in the 10.96.96.* network which is a client's VPN range, while leaving some of the lower addresses available for separate static NAT. For example, I want the client's 10.96.96.3 to NAT to my DMZ's ftp server at 192.168.3.3 rather than to something on my inside network.
Can this be done without listing every in-house address separately as a separate static NAT entry? I know that will work, but it's a lot of work and maintenance effort?