×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

some commands not accepted on asa 8.2 !!!!

Answered Question
Jan 22nd, 2014
User Badges:

hi all

i cant apply these commands on asa 8.2 ios :

==============================================================
object network RDP-REDIRECT
 nat (inside,outside) static interface service tcp 3389 3389 
object network HTTP-REDIRECT
 nat (any,outside) static interface service tcp www www 
object network HTTPS-REDIRECT
 nat (any,outside) static interface service tcp https https 
object network CITRIX-ICA-HDX-REDIRECTION
 nat (inside,outside) static interface service tcp citrix-ica citrix-ica 
object network CITRIX-ICA-SESSION-RELIABILITY-REDIRECTION
 nat (any,outside) static interface service tcp 2598 2598 

=============================================================================

object network MY-insideNET
        subnet 10.10.10.0 255.255.255.0
      nat (any,outside) after-auto 1 source dynamic MY-insideNET interface


=================================================================

ASAAAAA# sh version



Cisco Adaptive Security Appliance Software Version 8.2(5)

Device Manager Version 6.4(5)



Compiled on Fri 20-May-11 16:00 by builders

System image file is "disk0:/asa825-k8.bin"

Config file at boot was "startup-config"



ASAAAAA up 11 hours 11 mins



Hardware:   ASA5505, 512 MB RAM, CPU Geode 500 MHz

Internal ATA Compact Flash, 128MB

BIOS Flash Firmware Hub @ 0xffe00000, 1024KB



Encryption hardware device : Cisco ASA-5505 on-board accelerator (revision 0x0)

                             Boot microcode   : CN1000-MC-BOOT-2.00

                             SSL/IKE microcode: CNLite-MC-SSLm-PLUS-2.03

                             IPSec microcode  : CNlite-MC-IPSECm-MAIN-2.05



0: Int: Internal-Data0/0    : address is d48c.b597.ce35, irq 11

1: Ext: Ethernet0/0         : address is d48c.b597.ce2d, irq 255

2: Ext: Ethernet0/1         : address is d48c.b597.ce2e, irq 255

3: Ext: Ethernet0/2         : address is d48c.b597.ce2f, irq 255

4: Ext: Ethernet0/3         : address is d48c.b597.ce30, irq 255

5: Ext: Ethernet0/4         : address is d48c.b597.ce31, irq 255

6: Ext: Ethernet0/5         : address is d48c.b597.ce32, irq 255

7: Ext: Ethernet0/6         : address is d48c.b597.ce33, irq 255

8: Ext: Ethernet0/7         : address is d48c.b597.ce34, irq 255

9: Int: Internal-Data0/1    : address is 0000.0003.0002, irq 255

10: Int: Not used            : irq 255

11: Int: Not used            : irq 255



Licensed features for this platform:

Maximum Physical Interfaces    : 8

VLANs                          : 3, DMZ Restricted

Inside Hosts                   : 50

Failover                       : Disabled

VPN-DES                        : Enabled

VPN-3DES-AES                   : Enabled

SSL VPN Peers                  : 2

Total VPN Peers                : 10

Dual ISPs                      : Disabled

VLAN Trunk Ports               : 0

Shared License                 : Disabled

AnyConnect for Mobile          : Disabled

AnyConnect for Cisco VPN Phone : Disabled

AnyConnect Essentials          : Disabled

Advanced Endpoint Assessment   : Disabled

UC Phone Proxy Sessions        : 2

Total UC Proxy Sessions        : 2

Botnet Traffic Filter          : Disabled



This platform has a Base license.



Serial Number: JMX162740GP

Running Activation Key: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Configuration register is 0x100003

Configuration last modified by enable_15 at 13:31:09.309 UTC Wed Jan 22 2014

Correct Answer by Jon Marshall about 3 years 6 months ago

Those commands are NAT using ASA version 8.3 onwards. ASA 8.2 uses the old syle NAT.


You don't have the option of using "any" as the interface and you don't use object network type statements.


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jon Marshall Thu, 01/23/2014 - 02:18
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Those commands are NAT using ASA version 8.3 onwards. ASA 8.2 uses the old syle NAT.


You don't have the option of using "any" as the interface and you don't use object network type statements.


Jon

Actions

This Discussion