02-22-2017 04:50 AM - edited 03-12-2019 01:58 AM
Hello,
Iìd like to understand if applying reverse nat on ASA firewall is a good practice or is deprecated due ASA's security logic of inside and outside inteface concept.
Thank you in advance for any kind reply.
Regards
angelo
02-22-2017 06:22 PM
Angelo,
Assuming that with "reserve nat" you're referring to the NAT control feature then that's correct, the use of this feature was deprecated since the introduction of code 8.3.
The best practice for traffic access control is the use of security levels and access-lists.
HTH
Pablo
02-22-2017 09:33 PM
Hi pablo, i am referring to configuration of ASA pre-8.3 with nat-control enabled and with reverse nat i mean the configuration of natting from outside to inside which is in my mind in contraddiction respect normal ASA behaviour. is that also depreated or it is an accepted configuration as natting from inside to outside?
Thank you for your reply
Angelo
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: