Re: EXTENDED keyword Added automatically in all static NAT after
There does seem to be a bug.
The Command Reference does state that is supposed to be a parameter used with Dynamic PAT.
Did a quick test on my own ASA with software versions 9.0(2)10 and 9.0(2)
It seems while normally adding for example a NAT0 type configuration with Twice NAT the ASA does indeed insert the parameter "extended" to a "static" configuration.
When I then boot up the software back to 9.0(2) from 9.0(2)10, the ASA shows a error during boot up and rejects the command that was in the configuration on the newer software.
I didn't find any Bug ID about this sort of problem so it is either something that is not public or it just hasnt been added to the database? I guess you should either open a TAC case or wait for an answer from Cisco employee. Natutally might be that I just have missed the Bug while looking for it.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...