Failover traffic sync problem

Unanswered Question
Mar 29th, 2009
User Badges:


If I permit udp traffic specifically in nat0 statement facing problem with configuration sync in failover.

Instead if I permit tcp or ip in nat0 statement every thing works fine.

What might be the problem?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vmoopeung Fri, 04/03/2009 - 07:03
User Badges:
  • Bronze, 100 points or more

You may try using the "nat-control" statement. The nat-control command on the PIX/ASA specifies that all traffic through the firewall must have a specific translation entry (nat statement with a matching global or a static statement) for that traffic to pass through the firewall.


This Discussion