Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1125
Views
0
Helpful
1
Replies

ICMP drooped After applying NAT between sub interfaces

MohammadKayed
Level 1
Level 1

‎01-19-2020 01:16 PM

Hello , I am trying to connect ASA firewall to a switch as firewall on stick 

 

pc1 (Vlan 10) ---------

                                       switch     ----------- ASA

pc2 (Vlan 20 ) ---------

 

int g0/0
no ip add
int g0/0.10
vlan 10
ip add 10.10.10.1 255.255.255.240
nameif Inside_1
security 100
no shut
int g0/0.20
vlan 20
ip add 10.10.10.17 255.255.255.240
nameif Inside_2
security 100
no shut

 

this is my configuration when i try to ping PC1 to 2 or vise versa its works

but the issue that ( i want pc2 to see PC1 as 7.7.7.7)

 

#Object for PC1_NAT
Object network Ip_7
host 7.7.7.7

exit

nat (Inside_1,Inside_2) source static Ip_PC1 Ip_7

 

the ping fail PC1 send request to 2 , PC 2 replay to 7.7.7.7 then packet is droped only from PC2 side

i tried to ping PC1 from PC2 as ping 7.7.7.7 only request send to gateway

Labels:
0 Helpful
1 Reply 1

MohammadKayed
Level 1
Level 1

‎01-19-2020 01:29 PM

I have solved it thanks there was another Nat statement above 

 


nat (any,outside) source dynamic any interface

 

just changed the orders.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card