internal traffice over ASA ?

Unanswered Question
Mar 22nd, 2010

hi,

it seems some internal server traffic goes over the default gateway... this should not be...

How could i exempt the internal traffic from nat ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jennifer Halim Mon, 03/22/2010 - 01:36

Assuming the internal server ip address is 200.1.1.1:

object network obj-200.1.1.1
   host 200.1.1.1
   nat (inside,outside) static 200.1.1.1

OR/ if you are NAT exempting the whole subnet of 200.1.1.0/24:

object network obj-200.1.1.0
   subnet 200.1.1.0 255.255.255.0
   nat (inside,outside) source static obj-200.1.1.0 obj-200.1.1.0

Actions

This Discussion