cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
258
Views
0
Helpful
0
Replies
Beginner

Probable bug in ASA 5506X FTD FDM Web interface about NAT configuration (FTD 6.2.3.13)

Trying to source nat a VPN connexion from LAN_SUBNET (192.168.1.0/24) to a AWS_VPC_SUBNET (10.0.124.0/24)

 

- Using FTD FDM Web GUI to configure a NAT on a 5506

- Menu : Security Policies -> NAT

- Add static nat rule

* Name : LAN_NAT

* Type : Static

* Interfaces : Any to any

* Original packet

** Source address : LAN_SUBNET

** Destination address : AWS_VPC_SUBNET

** Source port : any

** Destination port : any

* Translated packet

** Source address : LAN_NAT_SUBNET

** Destination address : AWS_VPC_SUBNET

** Source port : any

** Destination port : any

I then click on "save" and then "deploy"

Everything seems ok in the GUI but when I ssh into the ASA and type show running-config , I can't see the NAT rule in the configuration.

 

The GUI mustn't accept the configuration because the configuration is not valid => the GUI must show an error message.

A valid configuration is NAT interfaces ANY to OUTSIDE

 

 

 

Everyone's tags (1)