cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
325
Views
0
Helpful
3
Replies

SSL VPN 8.3 to 8.2 NAT Question

jeff6strings
Level 1
Level 1

In studying and testing SSL VPN on an ASA I have the network as shown in the attached diagram. The configuration is based on an ASA with 8.3 but our ASA is 8.2 and at this time I'm not familiar with the new NAT configuration and commands in 8.3 or later and asking if someone can translate the

'nat (inside,outside) source static' for me to an 8.2 version.

Appreciate any help.

Jeff

nat (inside,outside) source static  NETWORK_OBJ_192.168.3.0_Net1 NETWORK_OBJ_192.168.3.0_Net1 destination static NETWORK_OBJ_192.168.100.0_RemotePool NETWORK_OBJ_192.168.100.0_RemotePool

1 Accepted Solution

Accepted Solutions

Jouni Forss
VIP Alumni
VIP Alumni

Hi,

This seems like a NAT0 / NAT Exempt configuration in the new 8.3+ NAT format

And I guess it would make sense we are talking about VPN connections.

It should be something like this

access-list INSIDE-NAT0 permit ip 192.168.3.0 255.255.255.0 192.168.100.0 255.255.255.0

nat (inside) 0 access-list INSIDE-NAT0

Naturally the names/networks used in the configuration might be different depending on your actual existing configurations on the firewall.

- Jouni

View solution in original post

3 Replies 3

Jouni Forss
VIP Alumni
VIP Alumni

Hi,

This seems like a NAT0 / NAT Exempt configuration in the new 8.3+ NAT format

And I guess it would make sense we are talking about VPN connections.

It should be something like this

access-list INSIDE-NAT0 permit ip 192.168.3.0 255.255.255.0 192.168.100.0 255.255.255.0

nat (inside) 0 access-list INSIDE-NAT0

Naturally the names/networks used in the configuration might be different depending on your actual existing configurations on the firewall.

- Jouni

Jouni,

Thank you for the reply and a few minutes ago I saw your document in the URL below and it's at the top of my reading list.

https://supportforums.cisco.com/docs/DOC-31116

Hi,

No problem. Hopefully you find the document helpfull.

I will probably update the document a bit later on but at the moment dont have the energy to concentrate on writing more information to it.

- Jouni

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: