Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 7.0(8)

Hello,

I have a ASA configured with static NAT and also the global PAT by the DMZ interface, whenever the traffic heading towards the DMZ.

I have a some questions:

  • Nat control is disabled but stilli see the translation are done for static and PAT
  • And also i have not applied any access-list to allow the users from DMZ to access inside servers but still the users are coming DMZ to inside.
  • what is the default behaviour of firewall when nat-control is disable,

I hope when the nat-control is disabled then it controls all by acccess-list and by routiing but seem here is totally different though nat-control is disable and also the access-list are not defined still the traffic is entererd from DMZ to Inside.-

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

ASA 7.0(8)

Hello Jack,

Do you have any DMZ access-rules at all? If so, what are they? Also, what are the security levels of the inside and the DMZ? Are you using a "same-security traffic" command anywhere?

Thanks!

Joey

1 REPLY
New Member

ASA 7.0(8)

Hello Jack,

Do you have any DMZ access-rules at all? If so, what are they? Also, what are the security levels of the inside and the DMZ? Are you using a "same-security traffic" command anywhere?

Thanks!

Joey

188
Views
0
Helpful
1
Replies
CreatePlease login to create content