Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Are we using NAT

We have a VPN conenction with a business partner. I need to know if our ASA is NATin'g the traffic to their router.

Thanks.

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions

Are we using NAT

Hello,

The ASA is not making translation just on the traffic related to ACL inside_nat0_outbound, So VPN traffic should be in that ACL.

Please rate helpful posts

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
3 REPLIES

Are we using NAT

Hello,

Please provide us the show run nat:

If you see a nat like this nat ( inside) 0 access-list xxxxx

Please provide the show run access-list xxxx

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Community Member

Are we using NAT

Changed the first octet.

nat (inside) 0 access-list inside_nat0_outbound

nat (inside) 99 111.16.1.0 255.255.255.0

nat (inside) 99 112.16.2.0 255.255.255.0

nat (inside) 99 113.168.1.0 255.255.255.0

nat (inside) 99 114.168.2.0 255.255.255.0

nat (inside) 99 115.168.6.0 255.255.255.0

nat (inside) 99 116.168.7.0 255.255.255.0

nat (inside) 99 117.168.8.0 255.255.255.0

nat (inside) 99 118.168.20.0 255.255.255.0

nat (inside) 99 119.168.21.0 255.255.255.0

nat (inside) 99 120.168.22.0 255.255.255.0

nat (inside) 99 121.168.23.0 255.255.255.0

nat (inside) 99 122.168.24.0 255.255.255.0

nat (inside) 99 123.168.25.0 255.255.255.0

nat (inside) 99 124.168.4.0 255.255.254.0

nat (inside) 99 125.20.0.0 255.255.0.0

nat (inside) 1 0.0.0.0 0.0.0.0

Are we using NAT

Hello,

The ASA is not making translation just on the traffic related to ACL inside_nat0_outbound, So VPN traffic should be in that ACL.

Please rate helpful posts

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
341
Views
0
Helpful
3
Replies
CreatePlease to create content