cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
315
Views
0
Helpful
2
Replies

NAT Issue

Mohammed Shafiq
Level 1
Level 1

I have an issue with NAT. My setup is as follows:

LAN ---> inside ifc  (ASA 9.5)  outside ifc ----->  Internet  --------> customer firewall

I have a VPN on the outside interface over the Internet to the customer. I am doing NAT on the inside ifc for outbound traffic and also NAT on the outside ifc for inbound traffic. On both occasions I am only NAT'ng the source address. My outbound NAT (inside ifc) is working fine. My inbound NAT is doing identity NAT (i.e. NAT to itself). I have tried both object and global nat and both are giving the same results.

2 Replies 2

Philip D'Ath
VIP Alumni
VIP Alumni

Could you be more specific as to what is not working?  Could you past the chunk of your config relating to NAT please.

Akshay Rastogi
Cisco Employee
Cisco Employee

Hi Mohammed,

When you say that in both the occasions you are trying to perform source NAT, then for Inbound NAT, ASA would be having a route for the mapped address pointing towards Outside. That could be the reason it would be going Identity.

Please check your nat statement. You could also share the required nat statement if it doesn't work.

Hope it helps.

Regards,

Akshay Rastogi

Remember to rate helpful posts.

Review Cisco Networking for a $25 gift card