NAT issue in ASA 5540

Unanswered Question
Apr 8th, 2007

We are observing the following two issues with our ASA 5540 firewall.

Clear xlate local is not evacuating the connection established with that local ip. Translation is clearing but it is not able to track the corresponding connections and clear the statement, even after switching off the local machine .Very frequently random users are facing connectivity issue, this is creating more complex while troubleshooting any connectivity issue.

With same nat/global statement, connections are established to the same destination. Suddenly few hosts loses the connection and not able to establish again. On verification we have observed, hit counts increases on access-list, connection statement/xlate statements are available, but the connection not established. Connection status is saA, but similar access-list in the same nat/global host is able to establish connections. Randomly we are getting this kind of issue.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dsweeny Mon, 04/16/2007 - 06:44

This document provides examples of basic Network Address Translation (NAT) and Port Address Translation (PAT) configurations on the Cisco PIX 500 Series Security Appliances. Simplified network diagrams are provided. Consult the PIX documentation for your PIX software version for detailed information

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008046f31a.shtml

Actions

This Discussion