Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
425
Views
0
Helpful
2
Replies

nat'ing an external network

mulhollandm
Level 1
Level 1

‎08-02-2010 05:03 PM - edited ‎03-11-2019 11:20 AM

folks

i'm looking for some advice on a nat issue on a asa 5540 8.2.1

i have a global nat to the outside interface which nats all the trafficfrom the inside to the outside interface address

i now have a requirement to allow the network on my external interface to connect to an internal network and the global nat is causing me issues

is there any way to allow the outside network connected into the inside without translation while a global nat for all traffic exists?

my problem is exercabated by the fact that the external network has another firewall, an old pix, connected to the internet as it default gateway

thanks to anyone taking the time to reply or read this

if it helps i'll gladly attach a network diagram for clarity

thanks again

Labels:
0 Helpful
2 Replies 2

Nagaraja Thanthry
Cisco Employee
Cisco Employee

‎08-02-2010 05:18 PM

Hello,

If I understand you right, you want the internal network to go to this

particular external network un-natted while for everybody else, you want to

use NAT. You can use either NAT-0 or identity NAT depending upon your

requirement.

NAT-0

0 Helpful

Panos Kampanakis
Cisco Employee
Cisco Employee
In response to Nagaraja Thanthry

‎08-03-2010 03:32 PM

An example would be

access-list nonat-acl permit ip host (x is the host you don't want to nat for certain destinations).

nat ( 0 access-list nonat-acl

I hope it helps.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card