Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

ASA with 3 interfaces inside to outside access

We have what I would call a standard ASA config with 3 interfaces. Inside, DMZ (for web servers) and outside for internet.

We need to allow an inside server to have direct access to an outside resource on the internet.

I want to know if this is as simple as setting up a static NAT from inside to outside and a ACL to allow outbound traffic only.

Dave

2 REPLIES
Cisco Employee

Re: ASA with 3 interfaces inside to outside access

Hello,

You are correct. All you need is NAT and access-list configuration on the firewall to allow inside to talk to internet. You can use either the static NAT or dynamic NAT to enable communication between the inside and the internet.

Static NAT:

static (inside,outside) netmask 255.255.255.255

Dynamic NAT:

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0

Hope this helps.

Regards,

NT

New Member

Re: ASA with 3 interfaces inside to outside access

Thanks

Dave

226
Views
0
Helpful
2
Replies
CreatePlease to create content