01-06-2012 07:23 PM - edited 03-11-2019 03:11 PM
Hi all,
I have a asa with 2 interfaces, both connected to private networks.
For the statement below, does it mean that outbound traffic frm the inside network of the asa will be translated to the asa inside interface when it passes through the asa?
global (inside) 1 interface
I am bit confused. Thk you!
Solved! Go to Solution.
01-06-2012 07:39 PM
yes that is correct, but traffic from interfaces like dmz or outside going out of the inside interface.
Sent from Cisco Technical Support iPhone App
01-06-2012 07:50 PM
That command alone won't do anything...
If you enter these two commands:
global (outside) 1 interface
nat (inside) 1 0 0
It means everything (the 0s) coming on the inside interface will get natted when it goes out of the outside interface with the IP address of that interface (the outside interface's IP).
In addition it would to PAT.
I'll recommend you to go thru this document:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008046f31a.shtml
It does explain how to create NAT rules by using both the CLI and the ASDM.
D.
---
Posted by WebUser Dennis Ariel
01-06-2012 07:39 PM
yes that is correct, but traffic from interfaces like dmz or outside going out of the inside interface.
Sent from Cisco Technical Support iPhone App
01-06-2012 09:20 PM
Hi Thomas,
Apologies i miss out on the
"but traffic from interfaces like dmz or outside going out of the inside interface." on your post.
Does that mean that traffic from other interfaces(eg dmz or outside) destined for inside network will also get translated to the inside interface ip for the statement below(assuming i have no other "nat" and "global" statements)?
global (inside) 1 interface
01-06-2012 07:50 PM
That command alone won't do anything...
If you enter these two commands:
global (outside) 1 interface
nat (inside) 1 0 0
It means everything (the 0s) coming on the inside interface will get natted when it goes out of the outside interface with the IP address of that interface (the outside interface's IP).
In addition it would to PAT.
I'll recommend you to go thru this document:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008046f31a.shtml
It does explain how to create NAT rules by using both the CLI and the ASDM.
D.
---
Posted by WebUser Dennis Ariel
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide