how to make asa to pass everything trough it?

Unanswered Question
Mar 20th, 2007


how can I make ASA to let everything go trough it? everything should be allowed from outside to inside and vice versa. Should I make a static nat for the whole public network or just with access lists?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
vitripat Tue, 03/20/2007 - 10:55

There are two options.

1) Use following commands:

access-list nonat permit ip any any

nat (inside) 0 access-list nonat

access-list 101 permit ip any any

access-group 101 in interface outside

2) Use following commands:

static (inside,outside) netmask

access-list 101 permit ip any any

access-grup 101 in interface outside

I would prefer the first method as there will be no translations formed in it and I dont have to specify all the networks using the static command.

Hope that helps.




This Discussion