Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1125
Views
0
Helpful
5
Replies

How to configure NO NAT on ASA 5520, this is urgent!!

csco11049253
Level 1
Level 1

‎10-30-2008 03:18 AM - edited ‎03-11-2019 07:05 AM

Hi,

I have an ASA5520 which is to be deployed in out internal network and the following subnets are configured..

outside -> 10.1.127.0 -> security level 0

inside -> 10.1.110.0 -> security level 100

We want the firewall to work more as a router only with no nat configuration at the same time the source & destination address should be able to ping each without compromising on security.

Regards,

Syed

Labels:
0 Helpful
5 Replies 5

cisco24x7
Level 6
Level 6

‎10-30-2008 04:26 AM

no nat-control.

access-list outside permit ip any any log

access-group outside in interface outside

Now you have a router.

0 Helpful

csco11049253
Level 1
Level 1
In response to cisco24x7

‎10-30-2008 04:31 AM

Thanks,

Is there any need to add configuration related to NAT ex..

nat (inside) 0 0.0.0 0.0.0.0.0 ???

Regards,

Syed

0 Helpful

cisco24x7
Level 6
Level 6
In response to csco11049253

‎10-30-2008 04:39 AM

No. ASA, by default, will have "no nat-control"

enable.

0 Helpful

csco11049253
Level 1
Level 1
In response to cisco24x7

‎10-30-2008 04:46 AM

I've done what you've suggested but still I can ping the other networks.

Regards,

Syed

0 Helpful

cisco24x7
Level 6
Level 6
In response to csco11049253

‎10-30-2008 05:04 AM

post your config.

You must have other NATs on

the ASA. Once you enable PAT or STATIC NAT,

"no nat-control" becomes useless.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card