Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
593
Views
5
Helpful
5
Replies

How to configuration Default route And NAT on ASA firewall 5500 series

habtemariamzebene6612
Level 1
Level 1

‎02-20-2023 05:48 AM

How to confugtion Defualt route Amd NAT on ASA firewall 5500 series , ISP device assigend to my LAN using VLAN , I Have not Public Ip address how to confugtion ISP 's VLAN address as Defualt ip And confugtion NAT ? 

regards

Habtemariam 

Labels:
0 Helpful
5 Replies 5

paul driver
VIP
VIP

‎02-20-2023 01:56 PM

Hello
You can use after-auto section 3 nat on the ASA.

route outside 0 0 x.x.x.x <next hop ip address>
nat (inside,outside) after-auto source dynamic any interface


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

MHM Cisco World
VIP
VIP

‎02-20-2023 01:59 PM

routing 
route OUT 0.0.0.0 0.0.0.0 <Router IP>

NAT
NAT(IN,OUT) dynamic interface 

0 Helpful

paul driver
VIP
VIP
In response to MHM Cisco World

‎02-20-2023 02:48 PM

Hello 

@MHM Cisco World wrote:

NAT
NAT(IN,OUT) dynamic interface 


This will work however it will default to section 1 nat, and with the three nat sections of the ASA, section 1 takes preference, so if the requirement for more specific manual nat statement is added in the future it could become obsolete and not work if preference wasn't given to it within section 1 over the default pat statement, hence its suggested to append a default pat statement at the very end of the ASA nat order (section 3) 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

MHM Cisco World
VIP
VIP
In response to paul driver

‎02-20-2023 03:07 PM

Yes you are right but I dont thing he use manual NAT for 1:1 NAT or static PAT. 

0 Helpful
Customers Also Viewed These Support Documents