Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
384
Views
0
Helpful
3
Replies

When I create a nat, the computer can not browse internet

Neville Sanford
Level 1
Level 1

‎11-11-2015 06:42 AM - edited ‎03-11-2019 11:52 PM

Hello

I have a ASA 5508x. I created a nat for a web server. It works fine. People can get to my webserver from the outside. However this server now can no longer browse the internet. All other computers that are not using nat can browse the internet. I took the nat away and the computer could browse the internet again. 

Please help

Labels:
0 Helpful
3 Replies 3

Akshay Rastogi
Cisco Employee
Cisco Employee

‎11-11-2015 07:04 AM

Hi Neville,

Could you please share the sample configuration you are using?

Regards,

Akshay Rastogi

0 Helpful

Neville Sanford
Level 1
Level 1
In response to Akshay Rastogi

‎11-11-2015 07:27 AM





0 Helpful

Akshay Rastogi
Cisco Employee
Cisco Employee
In response to Neville Sanford

‎11-12-2015 07:51 AM

Hi Nevile,

What i could remember from your earlier configuration, configure specific with your interfaces in your nat statements(do not use any any in interface). Specify exact interface name wherever possible.

For internet traffic have something like :

object net obj-any

 subnet 0 0

 nat(inside,outside) dynamic interface

For static nats try something like :

object net obj-server

 host <webserver internal ip>

 nat (inside,outside) static <mapped-ip>

Also when you mention host are able to reach internet w/o nat, does that mean that some other device peforming nating to public ip for internal private hosts?

Regards,

Akshay Rastogi

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card