ASA basic question

Unanswered Question
Aug 4th, 2008

I have a basic question , please answer it


What will happen if I put like given below in my ASA ?



nat (inside) 1 10.1.40.202 255.255.255.255 0 0

global (outside) 1 202.25.25.65 netmask 255.255.255.255


static (inside ,outside) 202.25.25.66 10.1.40.202 netmask 255.255.255.255 255 0


Whether it means that from inside to outside my local IP will go as 202.25.25.65 and from outside to inside it will be 202.25.25.66 ? Is it correct , please let me know

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
m.sir Tue, 08/05/2008 - 00:51

its true if those commands are used separately but if you using both commands at same time static take precedence and host 10.1.40.202 will go outside as 202.25.25.66 (otherwise it would be asymmetric - outside host would start communication with 202.25.25.66 and answer would come from 202.25.25.65 - its not possible)

M.

Hope that helps rate if it does

dhananjoy chowdhury Tue, 08/05/2008 - 01:01

For the IP 10.1.40.202 traffic going outside will be seen as source 202.25.25.66


Also traffic coming to the IP 202.25.25.66 will be redirected to the IP 202.25.25.66 , provided there is an Access-list allowing that traffic.


Static NAT will be more prferred.

Actions

This Discussion