topic Angelo, in Network Security

ASA reverse nat

ANGELO DE MASI — Tue, 12 Mar 2019 08:58:13 GMT

Hello,

Iìd like to understand if applying reverse nat on ASA firewall is a good practice or is deprecated due ASA's security logic of inside and outside inteface concept.

Thank you in advance for any kind reply.

Regards

angelo

Angelo,

Pablo — Thu, 23 Feb 2017 02:22:43 GMT

Angelo,

Assuming that with "reserve nat" you're referring to the NAT control feature then that's correct, the use of this feature was deprecated since the introduction of code 8.3.

The best practice for traffic access control is the use of security levels and access-lists.

HTH

Pablo

Hi pablo, i am referring to

ANGELO DE MASI — Thu, 23 Feb 2017 05:33:49 GMT

Hi pablo, i am referring to configuration of ASA pre-8.3 with nat-control enabled and with reverse nat i mean the configuration of natting from outside to inside which is in my mind in contraddiction respect normal ASA behaviour. is that also depreated or it is an accepted configuration as natting from inside to outside?

Thank you for your reply

Angelo