cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
867
Views
0
Helpful
1
Replies

Asymmetric NAT issue

rmessina
Level 1
Level 1

I have an ASA running 8.2.2 code, and I'm having a trouble reaching a network from the DMZ to the inside.  The network that I'm having trouble reaching is in a DMZ on another ASA that I do not manage.  I can reach the network in question from any internal PC, but not from a server in our DMZ.  When I attempt a ping and view the logs on the ASA I get

%ASA-5-305013: Asymmetric NAT rules matched for forward and reverse 
flows; Connection protocol src interface_name:source_address/source_port dest 
interface_name:dest_address/dest_port denied due to NAT reverse path failure.

An attempt to connect to a mapped host using its actual address was        rejected.   

Any assistance will be greatly appreciated. 

1 Reply 1

rmessina
Level 1
Level 1

I found a NAT exemption that was missing for the networks in question.  Added an exemption and all is well now