I have some comments for the NAT setup discussion.
(1) Since one probably will setup a truly singular object for a server and host information I do not concur with the wording that stated we need a network object that will represent our server. In fact this embedded NAT object is really a portforwarding object that ties in a port or service to a host IP. Much better to call this www4nat or RDP_4_Nat etc.. and reserve the server name or identification for its own object. (for ACL rules for example)
(2) The video goes two quickly over the Advanced page, entirely missing the Interface selections and more importantly the Important relationship between the destination address there, with the Translated address in the first popup page.
Other Notes:
(3) You can access the object NAT from the objects menu (I did not intuitively use the small arrow beside the larger ADD button on the NAT rules page and consequently kept ending up trying to make more complex manual nat rules.
(4) Speaking of which, I would like to get some examples of manual nat (twice nat) on video as a logical next step in programming the router. Throw in a second WANIP on the router and deal with servers on the inside and DMZ.
(5) Although docs state ACLs are acted upon first, there is that UNNAT in the packet tracer. That has to be reconciled and explained in more detail. Especially since there is a NAT function later.
Maybe you need to update Flash player or something. This video for example is working just fine for me.
Or you can ask more on the Security / Firewall section about configuring NAT. Though there usually instructions are given in the CLI configuration format and not ASDM.
- Jouni
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I am facing issue with MS Teams over MAC system. After installing Cisco Any Connect Umbrella Client & configured web Policy, MS Teams stopped working. It is asking for sign in and not getting through. Done the combinations with policy but no luck.MAC ...
view more
Hello, I have a customer that needs to renew their AMP4E solutions. The SKU they are using has reach EOL and cant be renewed. They need to move to a new SKU. What does the renewal process look like? Is there a specific migration SKU? Does the custome...
view more
I hit this behaviour while a typo was made putting in 802.1x config to a cisco 2960x switch running 15.2(2) with IBNS 2.0.A typo was made when putting in the following two lines of config below, instead of ISE_RADIUS I had ISE_RADIUSB which obviously didn...
view more
where are captured files stored on FTD? What is the path to the directory to see them? Once on the directory, could the command file delete xxxx be used to delete them?I personally think that it's easier to manage capture via the UI, but need to kno...
view more
Hi I'm looking at using TrustSec SGTs to differentiate access for Anyconnect VPN clients. I have a dev environment with ASAv (asa9123-7-smp-k8.bin) and ISE 2.6 patch 7. ASA has been integrated with ISE and I can see the ISE configured secur...
view more
