Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
715
Views
0
Helpful
2
Replies

ASA reverse nat

ANGELO DE MASI
Level 1
Level 1

‎02-22-2017 04:50 AM - edited ‎03-12-2019 01:58 AM

Hello,

Iìd like to understand if applying reverse nat on ASA firewall is a good practice or is deprecated due ASA's security logic of inside and outside inteface concept.

Thank you in advance for any kind reply.

Regards

angelo

Labels:
0 Helpful
2 Replies 2

Pablo
Cisco Employee
Cisco Employee

‎02-22-2017 06:22 PM

Angelo,

Assuming that with "reserve nat" you're referring to the NAT control feature then that's correct, the use of this feature was deprecated since the introduction of code 8.3.

The best practice for traffic access control is the use of security levels and access-lists.

HTH

Pablo

0 Helpful

ANGELO DE MASI
Level 1
Level 1
In response to Pablo

‎02-22-2017 09:33 PM

Hi pablo, i am referring to configuration of ASA pre-8.3 with nat-control enabled and with reverse nat i mean the configuration of natting from outside to inside which is in my mind in contraddiction respect normal ASA behaviour. is that also depreated or it is an accepted configuration as natting from inside to outside?

Thank you for your reply

Angelo

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card