04-15-2013 06:19 AM
In studying and testing SSL VPN on an ASA I have the network as shown in the attached diagram. The configuration is based on an ASA with 8.3 but our ASA is 8.2 and at this time I'm not familiar with the new NAT configuration and commands in 8.3 or later and asking if someone can translate the
'nat (inside,outside) source static' for me to an 8.2 version.
Appreciate any help.
Jeff
nat (inside,outside) source static NETWORK_OBJ_192.168.3.0_Net1 NETWORK_OBJ_192.168.3.0_Net1 destination static NETWORK_OBJ_192.168.100.0_RemotePool NETWORK_OBJ_192.168.100.0_RemotePool
Solved! Go to Solution.
04-15-2013 06:23 AM
Hi,
This seems like a NAT0 / NAT Exempt configuration in the new 8.3+ NAT format
And I guess it would make sense we are talking about VPN connections.
It should be something like this
access-list INSIDE-NAT0 permit ip 192.168.3.0 255.255.255.0 192.168.100.0 255.255.255.0
nat (inside) 0 access-list INSIDE-NAT0
Naturally the names/networks used in the configuration might be different depending on your actual existing configurations on the firewall.
- Jouni
04-15-2013 06:23 AM
Hi,
This seems like a NAT0 / NAT Exempt configuration in the new 8.3+ NAT format
And I guess it would make sense we are talking about VPN connections.
It should be something like this
access-list INSIDE-NAT0 permit ip 192.168.3.0 255.255.255.0 192.168.100.0 255.255.255.0
nat (inside) 0 access-list INSIDE-NAT0
Naturally the names/networks used in the configuration might be different depending on your actual existing configurations on the firewall.
- Jouni
04-15-2013 10:47 AM
Jouni,
Thank you for the reply and a few minutes ago I saw your document in the URL below and it's at the top of my reading list.
04-15-2013 10:55 AM
Hi,
No problem. Hopefully you find the document helpfull.
I will probably update the document a bit later on but at the moment dont have the energy to concentrate on writing more information to it.
- Jouni
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: