Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
265
Views
0
Helpful
3
Replies

Routed and transparent mode simultaneoulsy

ymadheka
Level 4
Level 4

‎12-15-2016 06:52 AM - edited ‎03-12-2019 01:39 AM

Hi Team,

We have a customer who wants to enable routed and transparent mode at the same time for FTD platform. The use case is that the firewall in NAT mode for Internal private IP network and use the firewall in transparent mode for our Internal Public IP network.

Kindly advise.

Labels:
0 Helpful
3 Replies 3

Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-15-2016 07:40 AM

You can just not NAT traffic coming from the Internal Public IP network. That's independent of routed vs.transparent mode.

0 Helpful

ymadheka
Level 4
Level 4
In response to Marvin Rhoads

‎12-17-2016 12:02 AM

Hi Marvin,

Thanks for the reply.

Here the private network represents the server zone and not any internal users. Based on the discussion with the customer the use case is like they have two networks behind the firewall one represents the private network for their servers zone while the other one represents public network of the server zone. The ideology is to not inspect the traffic coming to the public network since their service functionality are delivered through the NATted part of the private network.

Hence want to pass through the traffic for the public network and inspect the traffic for the private network.

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to ymadheka

‎12-17-2016 04:01 AM

Sure - you would combine NAT rules (including NAT exemption) with your Access Control (AC) policy.

Just build the AC policy top down like a traditional ACL - first match will govern how the traffic is treated / inspected.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card