no nat control

Unanswered Question
Sep 28th, 2008

if theres "no nat control" in an asa implementation, is there any security issue in here...

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Marwan ALshawi Sun, 09/28/2008 - 03:05

this will disable the requerment of the firewall that communication between any two interface on the firewall will contin a nat u can make nat exmption but u need an imlimintaion for that

if u disable it no need for nat between interface

the issue is without nating the security will be less

if helpful Rate

Matthew Warrick Sun, 09/28/2008 - 17:11

Whether it's a true "issue" or not is really up to your security team to decide. A well-maintained access list on the outside interface is more important than obscure NAT configurations IMO.


This Discussion