cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6685
Views
0
Helpful
6
Replies

verify nat on asa

cfajardo1_2
Level 1
Level 1

device: asa 5520

how can i verify whether my nat is realy taking place aside from the sh xlate;

static (dmz2,outside) IPoutside IPdmz2

6 Replies 6

JORGE RODRIGUEZ
Level 10
Level 10

you can do

show local-host IPdmz2

or

show xlate | inc IPoutside

beside these commands if your nat config is correct connection is another way to determined it is woring.

Rate any helpful post !

HTH

Jorge

Jorge Rodriguez

but both of this shows translation is there even though theres no actual traffic taking place.

i wanted to know whether translation is realy taking place

even though you do a clear xlate, and you do a sho xlate, it will still sh you the translation

that means either the local host is receiving traffic from outside or generating-requesting outbound traffic by some app in host.. issue in pix enable mode PIX#clear local-host IPdmz , then do show xlate see if it still has translations.

Pls rate any helpful post

Jorge

Jorge Rodriguez

the 'show conn' command might help you on this also.

zv92470-dst
Level 1
Level 1

try "sh nat" and see if that helps.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: