I'm newbie with the asa family.
I have a cisco ASA 5540 and i cant make a simple PAT (many private IP to one public IP). Below you can find my conf.
ip address 192.168.250.1 255.255.255.224
ip address x.x.x.157 255.255.255.224
nat (dmz-vl310) 1 192.168.250.0 255.255.255.224
global (outside) 1 x.x.x.131
and the results by typing the command below are:
packet-tracer input dmz-vl310 icmp 192.168.250.5 0 8 220.127.116.11
match ip dmz-vl310 192.168.250.0 255.255.255.224 outside any
dynamic translation to pool 1 (x.x.x.131)
translate_hits = 1, untranslate_hits = 0
Drop-reason: (acl-drop) Flow is denied by configured rule
but on my firewall rule all is open. Can someone to help me, what kind of error i make?
Go to Solution.
That is great, please post the answer and mark the question as answered so future users can learn from you
View solution in original post
Problem was resolved.
Actualy there is not problem! packet-tracer show a problem with the access-list but i connected a pc behind the lan and all is working correctly.
thank you and sorry for the inconvenience,
Great, thank you for that information
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: