cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
501
Views
0
Helpful
4
Replies

Two NAT Rules for a connection

Hi

I am trying to understand if this is possible in any way as this is one of my upcoming project requirement.

I need to have two nat rules for a connection. Say i would NAT source in one nat rule and would nat destination in other one.

4 Replies 4

Collin Clark
VIP Alumni
VIP Alumni

If I understand you correctly, then yes it is possible. Can you give more specifics and we can tell for sure?

Hi

Thanks for you reply, But i still dont understand how the logic works. As per the working of the firewall, if any rule matches it would generally not go to any other rule below.

I assume this case with ACL being applied only at in direction of the each interface but not for out.

zippy_831
Level 1
Level 1

What version of code are you running on your ASA?

johnlloyd_13
Level 9
Level 9

Hi,

Yes, it's possible. If you're using the newer ASA code (8.3+), you can use 'any' keyword for your NAT ingress or egress interface.


Sent from Cisco Technical Support iPhone App

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: