05-03-2016 04:31 PM - edited 03-12-2019 12:42 AM
Do you require nat to allow inside network accessing DNZ ip ? I think only ACL is required in 8.4.
05-03-2016 04:51 PM
NAT is not required, although depending on your software version and options you have need to create a "no-nat" rule.
05-03-2016 08:26 PM
I know with the older version of ASA m NAT is the requirement. Can someone provide details of NAT-Control command. I think with 8.4 we don't need to create NAT rule in order to allow traffic from Higher security level to lower security level ?
05-03-2016 08:32 PM
Hi Irfan,
For more clarity about NAT-control check this:
https://supportforums.cisco.com/document/11936941/lets-briefly-talk-about-what-nat-control
The nat-control command is deprecated post 8.2. To maintain the requirement that all traffic from a higher security interface to a lower security interface be translated,
Regards,
Aditya
Please rate helpful posts and mark correct answers.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: