Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1152
Views
0
Helpful
1
Replies

Double-NAT with IOS Zone Based Policy Firewalling

mmedwid
Level 3
Level 3

‎08-22-2008 10:25 AM - edited ‎03-03-2019 11:14 PM

I am trying to sole the same issue described below where users who are VPNing to corporate need to get to DMZ off an ISR with ZBPF. The IP address of the resource is the same internally and externally. The question I have is double-nat such as described in the article below ok on IOS firewall and is it the best solution to the problem? As noted - you could solve the issue by having a separate internal DNS but we'd rather not go down that route. Thank-you.

http://blogs.interfacett.com/mike-storm/2006/6/29/bidirectional-nat-on-a-cisco-pix-or-asa.html

Labels:
0 Helpful
1 Reply 1

didyap
Level 6
Level 6

‎08-28-2008 05:42 AM

For Zone-Based Policy Firewall Design and Application Guide Following URL will help you :

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card