Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
382
Views
4
Helpful
1
Replies

Nat/Static Nat confusion

mo shea
Level 1
Level 1

‎03-06-2007 11:34 PM - edited ‎03-11-2019 02:42 AM

Hi...

One of our sites have an ISA server behind ASA5520 7.2(2). It is being used as a proxy server as well as email. All its interfaces use private IPs and all internal clients access http through this Server.

In order to allow internal clients to browse the internet, will a Static (inside, Outside) command suffice or I should add a global command defining the public IP that corresponds to the ISA external NIC (connected to ASA inside) and a NAT(inside) statement as well?

Ex:

static(ISA external, Public IP1) ....

or add

global (Outside) 1 Public IP1

nat(inside) 1 ISA external

Is this a redundant configuration?

As for email access I have created the required static (inside, Outside) command and access-list

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎03-07-2007 12:21 AM

Hi

If you already have a static setup for your ISA server due to your e-mail requirements then you do not need to do anything else on the ASA device for internet access as long as all access to the internet goes via the ISA server and there are no direct connections from internal clients to the Internet.

HTH

Jon

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card