Solved: Basic ASA 9.0 NAT Question

rayamitchell · ‎09-18-2013

I am trying to configure global NAT on an ASA with version 9. I'm used to doing it on an older version so I would like to know if I am doing this correctly.

My goal is to simply nat the local lan (10.1.1.0) to the outside interface.

I setup the following object for the lan:

object network localnet

subnet 10.1.1.0 255.255.255.0

Then I put this line in for the nat translation

nat (inside,outside) source dynamic localnet interface

Am I doing this correctly?

Oscar Castillo · ‎09-18-2013

Static and Global are gone, sorry buddy..

Old way to do it:

Pre 8.3 Old Config

Nat (inside) 1 10.0.0.0 255.255.255.0

global (outside) 1 interface

New way to do it:

Enjoy the reading

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080bf150c.shtml

View solution in original post

Oscar Castillo · ‎09-18-2013

ASA

CLI Commands

- Create an object:

object network AS2509

host 192.168.1.2

description Access Server 2509

- Create a NAT under de object-

nat (inside,outside) static interface service tcp 23 23

- Create an access List-

access-list outside_in line 4 remark Telnet (ACL's description, nothing relevant)

access-list outside_in line 5 extended permit tcp any object AS2509 eq telnet

- Create the Access Group-

access-group outside_in in interface outside

rayamitchell · ‎09-18-2013

Please read my whole message.

My goal is to simply nat the local lan (10.1.1.0) to the outside interface.

Oscar Castillo · ‎09-18-2013

Static and Global are gone, sorry buddy..

Old way to do it:

Pre 8.3 Old Config

Nat (inside) 1 10.0.0.0 255.255.255.0

global (outside) 1 interface

New way to do it:

Enjoy the reading

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080bf150c.shtml

rayamitchell · ‎09-18-2013

so then:

object network localnet

subnet 10.1.1.0 255.255.255.0

nat (inside,outside) dynamic interface

correct?

Thanks

mvsheik123 · ‎09-18-2013

Yeap. You got it.

Thx

MS