Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
843
Views
0
Helpful
1
Replies

How I can create Policy NAT on Cisco 5520 ASA with ASDM

Mark1110
Level 1
Level 1

‎09-30-2021 02:23 PM

Hello All, any one know how to create a Policy NAT on Cisco 5520 ASA with ASDM ?

 

I want to NAT 10.10.1.106 to 10.248.47.12

When destination is 68.51.113.0/24

 

For all other traffic want to do NAT 10.10.1.106 to 204.212.43.192

 

Appreciate your help!!

 

Thanks,

Nish

 

 

0 Helpful
1 Reply 1

Chakshu Piplani
Cisco Employee
Cisco Employee

‎10-02-2021 01:04 PM

Not sure with ASDM, but with CLI for the first part you will need to create a twice NAT

 

Creating objects:

object network obj-10.10.1.106
host 10.10.1.106
object network obj-10.248.47.12
host 10.248.47.12

object network obj-68.51.113.0-24
subnet 68.51.113.0 255.255.255.0

NAT statement (use interfaces according to your FW):

 

 

nat (inside,outside) source static obj-10.10.1.106 obj-10.248.47.12 destination static obj-68.51.113.0-24 obj-68.51.113.0-24 no-proxy-arp

 

If the above doesn't work as expected you can use the command below to remove it.

 

no nat (inside,outside) source static obj-10.10.1.106 obj-10.248.47.12 destination static obj-68.51.113.0-24 obj-68.51.113.0-24 no-proxy-arp

 

 

I'm not sure about the ask in the second part, as the question isn't clear to me.

 

You should definitely give this document a read.

https://community.cisco.com/t5/security-documents/asa-nat-8-3-nat-operation-and-configuration-format-cli/ta-p/3143050

 

Regards,

Chakshu

 

Do rate helpful posts by using the star icon !

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card