Failover traffic sync problem

Unanswered Question
Mar 29th, 2009


If I permit udp traffic specifically in nat0 statement facing problem with configuration sync in failover.

Instead if I permit tcp or ip in nat0 statement every thing works fine.

What might be the problem?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vmoopeung Fri, 04/03/2009 - 07:03

You may try using the "nat-control" statement. The nat-control command on the PIX/ASA specifies that all traffic through the firewall must have a specific translation entry (nat statement with a matching global or a static statement) for that traffic to pass through the firewall.


This Discussion