Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
299
Views
0
Helpful
1
Replies

nat object and no name

amit bhatnagar
Level 1
Level 1

‎12-11-2013 08:32 AM - edited ‎03-11-2019 08:16 PM

we have ASA with image 9.1.3 we have given no name command .

source 10.1.1.1

destination 192.168.1.1

port 443 80 21

for NAT  rule we have created 3 destination object on ASA with name 192.168.1.1_80 , 192.168.1.1_443 & 192.168.1.1_21

access list only one statement source 10.1.1.1  destination 192.168.1.1_80 port 80 , 443 and 21

If we try to delete object name 192.168.1.1_80  it gives error that it is used in access list .

But if I try to delete 192.168.1.1_443 & 192.168.1.1_21 it doesnt give me any alert and deletes the object but it removes the NAT .

My understanding is unless object is present in access list it will be removed .

Just want to know what is best practice I should add the network object 192.168.1.1_443 & 192.168.1.1_21 in access-list as well .

Thanks for help

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎12-11-2013 06:24 PM

Hello,

If you are using auto NAT anytime u delete an object the existing configuration withing the object (including NAT) will be lost!

I hope I did understood ur problem.

Regards

Sent from Cisco Technical Support Android App

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card