Hello,
Suppose we have two NAT rules under 'NAT Rules';
# Type Original (Source) Original (Destination) Interface (Translated) Address(Translated)
1 Exempt ANY ANY Outbound
2 Static Web_internal ANY Outside (Web_external)
Firewall accept inbound access to the external IP address (Statically NATed) of Web_external however I'm seeing asymmetric routing issue on ASA log.
Asymmetric NAT rules matched for forward and reverse flows- denied due to NAT reverse path failure.
I see NAT exemption rule (#1) is overwritting statc NAT for the outbound.
Is there any way we could put the highest priority on Static NAT over NAT exemption rule?
There is up/down arrow for both NAT exemption and static rule but static rule can not go above the NAT exemption rule.