cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
158
Views
3
Helpful
2
Replies

Seperate NAT policies for different VRs within one FTD

I am in the process of migrating 3 ASAs into 1 FTD. I have created separate VRs for the routing and they will all use one ACP. When migrating the NAT rules is the preferred process to use one NAT policy for the FTD which will be used within each VR? Is there a way to select a NAT policy for each VR?

1 Accepted Solution

Accepted Solutions

@NetworkMonkey101 no it's one NAT policy per managed device, so you cannot have a separate NAT policy for each virtual router.

Make sure you are specific in defining the interfaces and don't use "any".

https://www.cisco.com/c/en/us/td/docs/security/secure-firetwall/management-center/device-config/740/management-center-device-config-74/routing-vrf.html

 

View solution in original post

2 Replies 2

@NetworkMonkey101 no it's one NAT policy per managed device, so you cannot have a separate NAT policy for each virtual router.

Make sure you are specific in defining the interfaces and don't use "any".

https://www.cisco.com/c/en/us/td/docs/security/secure-firetwall/management-center/device-config/740/management-center-device-config-74/routing-vrf.html

 

I interest in this issue, as I know for ftd there is NAT vrf-aware

This NAT is when you use two subnet from two different vrf 

Anyway if you face issue please send me PM

MHM

Review Cisco Networking for a $25 gift card