Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
326
Views
0
Helpful
1
Replies

Correct way to source AND destination nat ftp

Jerry Plumley
Level 1
Level 1

‎04-14-2011 09:22 AM - edited ‎03-11-2019 01:21 PM

Cisco Adaptive Security Appliance Software Version 8.3(2)
Device Manager Version 6.3(4)

Hello all, I've tried umteen variations to get this working and can't get the active data (port) channel to work. Here's the deal....

Coming in my external interface via the tunnel I have tunnel_src and tunnel_dst ip addresses that I need to source and destination nat to internal addresses. What is the best way to do this?

Thanks, Jeff

Labels:
0 Helpful
1 Reply 1

Jerry Plumley
Level 1
Level 1

‎04-14-2011 11:53 AM

hey guys nevermind, this entire section was missing. Should have done a reset to factory when I got the device.

class-map inspection_default
match default-inspection-traffic
!
!
policy-map type inspect dns preset_dns_map
parameters
  message-length maximum client auto
  message-length maximum 512
policy-map global_policy
class inspection_default
  inspect dns preset_dns_map
  inspect ftp
  inspect h323 h225
  inspect h323 ras
  inspect rsh
  inspect rtsp
  inspect esmtp
  inspect sqlnet
  inspect skinny
  inspect sunrpc
  inspect xdmcp
  inspect sip
  inspect netbios
  inspect tftp
  inspect ip-options
!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card