Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
401
Views
0
Helpful
4
Replies

cisco asa 8.4 natting issue

raajesh8228
Level 1
Level 1

‎06-25-2014 06:34 AM - edited ‎03-11-2019 09:22 PM

Hi guys,

 

Can anyone help me how to configure the nat in cisco asa 8.4 ver

Labels:
0 Helpful
4 Replies 4

rvarelac
Level 7
Level 7

‎06-25-2014 06:59 AM

Hi ,

 

Basically we have 3 modes of NAT on this new version:  AUTO-NAT , MANUAL NAT and AFTER AUTO NAT.

They have  different priority on the ASA

 

Here are some examples :

 

Auto-NAT

1.Create the object to identify the IP

 

Object network webserver

Host 192.168.1.88

 

2.Create the NAT entry inside the object

Syntaxis

NAT (int name , int name)  # source static/dynamic  (object name source ) (object name destination )

 

Object network my_internal_net

Subnet 192.168.10.0 255.255.255.0

Nat (in,out) 2 source dynamic (object name )

 

Example of Dynamic-PAT

 

Object network inside-hosts

Subnet 192.168.1.0 255.255.255.0

Nat (in,out) 1 source dynamic interface

 

Static NAT to ANY

Object network inside-server

Host 192.168.1.99

Object network inside-server-global

Host 14.36.103.222

Nat (inside,any) static inside-server inside-server-global

 

 

Manual NAT with NAT 0

 

It’s created in the global mode, not inside an object

 

object network inside-net

 subnet 192.168.1.0 255.255.255.0

object network VPNhosts

 subnet 10.10.1.0 255.255.255.0

 

Nat (inside,outside) source dynamic inside-net interface destination static VPNhost VPNhost

 

AFTER-AUTO

Just add the keyword after-out to the sentence.

 

NAT (any,out) after-auto 1 source dynamic net_in net_out

 

Hope this help!

 

Regards ,

 

 

0 Helpful

raajesh8228
Level 1
Level 1
In response to rvarelac

‎06-26-2014 09:17 PM

Hi,

 

Thanks for your inforamtion.

0 Helpful

Marius Gunnerud
VIP
VIP
In response to raajesh8228

‎06-27-2014 09:53 AM

Magnus Mortensen has also created a nice document comparing pre 8.3 to post 8.3.

https://supportforums.cisco.com/document/33921/asa-pre-83-83-nat-configuration-examples

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-25-2014 06:59 AM

This has been written in many places.

I would suggest you start with the nice document Jouni Forss has written in this forum. It can be found at this link.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card