cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
589
Views
0
Helpful
1
Replies

Nat statements in ASA :8.3(1)

josh94950
Level 1
Level 1

Hello All,

The configuration for the natting is something like this

object network Obj-10.232.50.99

nat (INSIDE,ATT-Tele-Net) static 32.x.x.69

object network Obj-10.232.50.98

nat (INSIDE,ATT-Tele-Net) static 32.x.x.66

when I do a show xlate

mdcxf01b/EXTRANET# sh xlate | i ATT

NAT from INSIDE:10.232.50.98 to ATT-Tele-Net:32.x.x.66

NAT from INSIDE:10.232.50.99 to ATT-Tele-Net:32.x.x.69

mdcxf01b/EXTRANET#

If I understand the config statements 10.232.50.98 is natted to 32.x.x.66  and 10.232.50.99 is natted to 32.x.x.69 , but do we need reverse natting stements as well to work this ?

Thanks,

Josh

1 Accepted Solution

Accepted Solutions

varrao
Level 10
Level 10

Hi Josh,

The xlates are showing the correct  output, if the inside host goes to the internet, it would be natted  to 32.x.x.69, and if someone tries to access it from internet, it would be on the public ip, so yes, it is bi-directional mapping that you see there.

Thanks,
Varun Rao
Security Team,
Cisco TAC

Thanks,
Varun Rao

View solution in original post

1 Reply 1

varrao
Level 10
Level 10

Hi Josh,

The xlates are showing the correct  output, if the inside host goes to the internet, it would be natted  to 32.x.x.69, and if someone tries to access it from internet, it would be on the public ip, so yes, it is bi-directional mapping that you see there.

Thanks,
Varun Rao
Security Team,
Cisco TAC

Thanks,
Varun Rao
Review Cisco Networking for a $25 gift card