Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
554
Views
5
Helpful
2
Replies

Packet Capture on ASA with S-S VPN and Natted addressing

Not applicable

‎09-23-2015 12:25 PM - last edited on ‎03-11-2019 11:38 PM by

Been trying to get packet capture to work but an not sure what addresses to use as doing twice nat for the desired connections.

Rather than experimenting thought I would ask (as well as learn what addresses)

 

Here is my NAT / object statement

 

sho run object

object network net-remote
 subnet 10.160.0.0 255.255.0.0
object network net-local
 subnet 10.110.2.0 255.255.255.0
object network mapped_remote
 subnet 192.168.0.0 255.255.0.0

sho run nat
nat (INSIDE,OUTSIDE) source static 10.110.2.1 10.115.50.1 destination static mapped_remote net-remote
 

thanks

destination host real ip is 10.110.2.1.  client access as 10.115.50.1

customer network is 10.160.0.0.  we access internally bye 192.168.0.0

 

 

 

 

Labels:
0 Helpful
2 Replies 2

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎09-24-2015 06:27 AM

Duplicate for this:-

https://supportforums.cisco.com/discussion/12614376/packet-capture-asa-s-s-vpn-and-natted-addressing

0 Helpful

Rishabh Seth
Level 7
Level 7

‎09-24-2015 10:07 AM

Best way to figure out IPs to use in capture is to just think from your network's perspective that what would be the IP address on a packet when it hits the interface.

So in your case, as you have VPN so you should capture traffic on ingress interface. Use the actual source IP. For destination IP ise the IP that you enter on the source machine for accessing remote machine.

Let us know if you need more information on this.

Thanks,

R.Seth

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card