02-22-2017 04:50 AM - edited 03-12-2019 01:58 AM
Hello,
Iìd like to understand if applying reverse nat on ASA firewall is a good practice or is deprecated due ASA's security logic of inside and outside inteface concept.
Thank you in advance for any kind reply.
Regards
angelo
02-22-2017 06:22 PM
Angelo,
Assuming that with "reserve nat" you're referring to the NAT control feature then that's correct, the use of this feature was deprecated since the introduction of code 8.3.
The best practice for traffic access control is the use of security levels and access-lists.
HTH
Pablo
02-22-2017 09:33 PM
Hi pablo, i am referring to configuration of ASA pre-8.3 with nat-control enabled and with reverse nat i mean the configuration of natting from outside to inside which is in my mind in contraddiction respect normal ASA behaviour. is that also depreated or it is an accepted configuration as natting from inside to outside?
Thank you for your reply
Angelo
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide