07-17-2019 07:02 PM
Hi I need to translate old NAT statements to New statements and wanna verify if my statements are correct and what needs to be done to verify if all good :
Old:
global (outside) 1 interface
nat (outside) 0 access-list MGT-NAT-EXEMPT
nat (inside) 0 access-list WORKER-NAT-EXEMPT
access-group MGT-ACL-IN in interface outside
access-group WORKER-ACL-OUT in interface inside
no nat (inside) 1 0.0.0.0 0.0.0.0
nat (inside) 1 192.168.31.0 255.255.254.0 tcp 0 0 udp 0
provided :
MGT-NAT-EXEMPT & WORKER-NAT-EXEMPT are extended ACLs that permit Host A & Network A for each other
how does each statement translate to new ASA versions
Solved! Go to Solution.
08-30-2019 04:43 PM
07-17-2019 08:05 PM
08-30-2019 11:11 AM
Hi ,
that tunnels up link is very help ful thanks for that .
currently VPN tunnel is up , i am able to reach internal networks however i cant reach internet .
i think i am missing something here , as per ASDM logs some TCP connections are denied so i suspect below line has not been translated.
nat (inside) 1 10.129.30.0 255.255.254.0 tcp 0 0 udp 0 , what would this become in new ASA, tunnels up doesnt conccert this one .
thanks
08-30-2019 04:43 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide