Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1086
Views
0
Helpful
1
Replies

GRE with Static NAT on ASA 5540 running 8.2

Go to solution
amardram123
Level 1
Level 1

‎06-16-2010 03:51 AM - edited ‎03-11-2019 11:00 AM

Hi,

I am trying to run below command

access-list test extended permit gre host 192.x.x.x any

static (inside,outside) 59.x.x.x access-list test

after putting static command i get error saying

protocol mismatch between the static and access-list

need help to find if gre protocol is supported using static nat or not as when calling access-list with any port under tcp or udp protocol it works.

Regards

Amar

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
edadios
Cisco Employee
Cisco Employee

‎06-16-2010 05:20 AM

See the syntax per documentation :

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/s8.html#wp1512466

####

This access list should include only permit ACEs. You can optionally specify the real and  destination ports in the access list using the eq operator.

###

The protocol you used is not allowed to be used for access-list on Static . You can use tcp or udp,  or topgether  with specific port.

Regards,

View solution in original post

0 Helpful
1 Reply 1

Go to solution
edadios
Cisco Employee
Cisco Employee

‎06-16-2010 05:20 AM

See the syntax per documentation :

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/s8.html#wp1512466

####

This access list should include only permit ACEs. You can optionally specify the real and  destination ports in the access list using the eq operator.

###

The protocol you used is not allowed to be used for access-list on Static . You can use tcp or udp,  or topgether  with specific port.

Regards,

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card