04-17-2019 10:03 AM
Dears, good afternoon.
I come throw this forum in order to ask for help with a problem.
Here in my work I am replacing an ASA 5510 with an ASA 5525-x.
ASA 5510, OS 8.0(4) and ASDM 6.1(3)
ASA 5525-X, OS 9.4(4) and ASDM 7.2(1)
I did all the necessery migration with the Operation System because of the change in OS version 8.2.
So, my private network passes throw the firewall translated, and it is positioned at the border. The problem is that I am not getting succedded getting into the Internet with my public IP, I get on Internet with my private IP.
To make myself clear, when I remove the NAT (Static or dynamic (PAT)) I get into the other side with my private IP and when I put NAT it does not see the public one.
Please, can somebody give a help, tip ???
In the picture I show my infra in short because I cannot expose it. The notebook is pretending to be my Internet.
Thanks for help
04-17-2019 02:34 PM
you look like you are trying to NAT to 200.0.0.2 correct?
you could just use the existing "ANY " object if you want to NAT all outbound traffic. If you want to be more controlled, you can create the object-group for the subnet you want to NAT and then add the NAT(ingress, egress) dynamic interface
(the (IN,OUT) statement are dependent on your interface "nameif" names
object network ANY
subnet 0.0.0.0 0.0.0.0
object network ANY
nat (INSIDE,OUTSIDE) dynamic interface
HTH
Vince
04-17-2019 04:27 PM
Can you post your configuration, how your NAT configured ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide