11-24-2007 10:10 PM - edited 03-11-2019 04:34 AM
device: asa 5520
how can i verify whether my nat is realy taking place aside from the sh xlate;
static (dmz2,outside) IPoutside IPdmz2
11-24-2007 10:21 PM
you can do
show local-host IPdmz2
or
show xlate | inc IPoutside
beside these commands if your nat config is correct connection is another way to determined it is woring.
Rate any helpful post !
HTH
Jorge
11-24-2007 10:44 PM
but both of this shows translation is there even though theres no actual traffic taking place.
i wanted to know whether translation is realy taking place
11-24-2007 10:47 PM
even though you do a clear xlate, and you do a sho xlate, it will still sh you the translation
11-24-2007 11:12 PM
that means either the local host is receiving traffic from outside or generating-requesting outbound traffic by some app in host.. issue in pix enable mode PIX#clear local-host IPdmz , then do show xlate see if it still has translations.
Pls rate any helpful post
Jorge
11-25-2007 08:53 PM
the 'show conn' command might help you on this also.
11-26-2007 07:25 AM
try "sh nat" and see if that helps.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: