Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1203
Views
1
Helpful
18
Replies

FTDv not natting inbound traffic in Azure

Monadnock
Level 1
Level 1

‎02-27-2024 07:57 AM

Hi all, I have an FTDv in Azure and traffic going towards the public IP is not being natted towards an internal server. I see the traffic hit it in the packet capture but no nat rules are applying and it is not being forwarded inside because of that:

Monadnock_0-1709049141147.png

The rule is :

nat (outside,inside) source static any interface destination static interface 10.1.1.1 service SVC_622771026011 SVC_622771026011 no-proxy-arp

The rule is getting 0 hits. In the packet capture with a trace, it is not hitting any nats. The FTD has a route to 10.1.1.1 and it is allowed in the ACP.

thoughts?

18 Replies 18

MHM Cisco World
VIP
VIP
In response to Monadnock

‎02-27-2024 11:53 AM

Can you add details to packet tracer and does the this all packet tracer output?

MHM

0 Helpful

MHM Cisco World
VIP
VIP
In response to MHM Cisco World

‎02-29-2024 01:53 AM

Any update 

MHM

0 Helpful

nagroman
Level 1
Level 1

‎02-27-2024 08:43 AM

Hi!  

For port forwarding it should be like this

nat (INSIDE,OUTSIDE) source static local_ip pub_ip service SVC_111111 SVC_111111

0 Helpful

AugustoS.Nunes
Level 1
Level 1

‎06-17-2024 06:20 AM

Hello, i don't know if you have solved it yet, but i saw a good article from Cisco that might help out:
https://community.cisco.com/t5/security-knowledge-base/high-availability-and-scalability-design-and-deployment-of-cisco/ta-p/4109439#toc-hId--2140473560
It's for HA deployments but has some good exemples.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card