hello expertsi am in the middle of a serious problem and have to decide on one that is to use policy nat or static nat.all i want to know is which one is a better option to use if considering that fact that there will be really high volume of traffic...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,510) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(3) -
Cisco Secure Firewall Threat Defense (FTD)
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(319) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi,I have a pi 515 , and the next hop to it is an internet router.I have the below statements as part of the nat:---------------------------global (outside) 1 61.8.146.97nat (inside) 1 192.168.44.0 255.255.255.0 0 0---------------------------When i t...
Hi There,If I did the follwing configuration:static (inside,dmz) 10.1.1.255 10.1.1.255 net 255.255.255.255Where 10.1.1.0/24 is my inside network and I configured an access-list allowing all the traffic from the DMZ to the inside network. Will the ASA...
I have a problem with ip inspect on a C 827 router. When i want make a connection to outbound it can not make a session with ip inspect firewall. When is use the command sh ip inspect session i don`t see details. If i disable access-list then everyth...
Hi all. I have small problem I need help to figure outI have a Global statement:global (outside) 2 1.1.1.10 netmask 255.255.255.240And my nat statement is:nat (dmz2) 2 0.0.0.0 0.0.0.0 0 0Now, I have a host inside DMZ2 that wants to talk to my PIX's o...
After creating a new vlan with conf:interface Vlan56nameif xyzsecurity-level 71ip address 10.80.207.1 255.255.255.0ospf cost 10Am not able to ping on to this int and the int status is showing down even after giving no shut command.What is blocking?
hi all can someone pls tell me or guide me as to how to use the established command in pix or asa. i know that this established command works differently than the established command in the ios routers. here once a outbound connection has been made ...
Is it possible to perform the TCP Load Distribution function (available in Routers) via Pix 515 Firewall?Mansoor
Resolved! Session timeouts
Recently I put a context firewall up between our VPN concentrators and our inside network. Users have been complaining of getting timed out in applications like TELNET.I'm sure what is happening is the firewall is dropping the xlate after a period ...
Resolved! mgmnt port as HA port
hello,is it possible to use the management port of asa 5520 as link to the other 5520 for redundancy (HA)?thanks
hows the going lads,We are about to purchase a new ASA 5505 but it will be behind a netopia DSL router . The netopia will be put into bridge mode and the vpdn configuration will be applied to the ASA.However I have read that the VPDN commands has bee...
Resolved! IPS stopping TACACS packets
Hi All,This is my scenario, Switch--FirstIntPair--PIXInside--PIXOutside--SecondIntPair--Hub--Internetrouter.I have two interface pairs(please don't ask me why). One between core switch and pix inside interface and another between pix outside and inte...
As you are all aware, by default the 'inspect sqlnet' feature is switched on under the global policy map on PIX v7 firewalls. I would like to keep the 'inspect sqlnet' feature on at the global policy level, but turn it off for traffic travelling betw...
Hi Following is message with show conn in the pix525,ver 7.0. x.x.x.x is email server ip address. I don't think have 4g email send out in that time. How to understand this message? that source ip address is changed as time."TCP out 62.37.236.x:25 i...
Hi there, I have an ASA 5510 version 7.0(4). I have a problem with the nat0 , at some point of time my nat0 line on the inside interface simply dissappears . When i try to add it again it gives me an error ERROR: access-list has protocol or port . No...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM | ||
| 06-17-2025 01:07 PM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 5 | |
| 5 | |
| 2 | |
| 1 |
