05-03-2016 04:31 PM - edited 03-12-2019 12:42 AM
Do you require nat to allow inside network accessing DNZ ip ? I think only ACL is required in 8.4.
05-03-2016 04:51 PM
NAT is not required, although depending on your software version and options you have need to create a "no-nat" rule.
05-03-2016 08:26 PM
I know with the older version of ASA m NAT is the requirement. Can someone provide details of NAT-Control command. I think with 8.4 we don't need to create NAT rule in order to allow traffic from Higher security level to lower security level ?
05-03-2016 08:32 PM
Hi Irfan,
For more clarity about NAT-control check this:
https://supportforums.cisco.com/document/11936941/lets-briefly-talk-about-what-nat-control
The nat-control command is deprecated post 8.2. To maintain the requirement that all traffic from a higher security interface to a lower security interface be translated,
Regards,
Aditya
Please rate helpful posts and mark correct answers.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide