Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
604
Views
0
Helpful
1
Replies

Cisco Router Zone Base Firewall Packet Flow

abhay.goyal
Level 1
Level 1

‎12-14-2018 04:36 PM

Hi All,

 

I faced an issue today where i created a new ACL on Cisco Router zone based firewall. The ACL didn't work as i wasn't seeing any hit count on that, however i was able to see that the source ip was being natted whilerouter, firewall, security going out. I added the ACL in another Class-map and it worked fine. 

 router, firewall, security

Now i want to know the exact packet flow in cisco router when configured as a firewall, as what i know from ASA the policy will be inspected at first then the NAT would be applied. If my ACL was not sequentially correct then how come the source was getting NATted?

 

Please explain the packet flow here.

Labels:
0 Helpful
1 Reply 1

Kasun Bandara
VIP
VIP

‎12-14-2018 08:14 PM

Hi,
what is the router OS version. in ASA also some versions had issues like selecting route before NAT. better check with newest OS
Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful
Customers Also Viewed These Support Documents