Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
413
Views
0
Helpful
1
Replies

NAT query

mulhollandm
Level 1
Level 1

‎02-18-2011 02:29 PM - edited ‎03-11-2019 12:53 PM

folks

i have a basic nat query on an asa 8.2 i'm hoping you can help with

i've a dynamic nat to translate all traffic from the inside to outside to the external interface's IP

i also have a number of inside to outside exempts for some public IPs i have on the inside

no nat-control is configured

my query is this

when i try to initiate a connection from an outside server to an inside server it fails and packet tracer tells me it due to nat (i have an ACL in place to allow traffic)

if i configure a nat exemption from (outside, inside) if fails

if i configure a nat exemption from (inside, outside) if works

why do i need the nat when no nat-control is enabled

thanks to anyone taking the time to read this or to post a reply

greatly appreciated

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎02-18-2011 02:54 PM

"no nat-control" is disabled as soon as you have a NAT statement on an interface.

If you would need to exempt inbound traffic, you will need to configure static (inside,outside) as normally you will configure static NAT from high security level to low security level, and the static NAT works bidirectionally.

Hope that answers your question.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card