Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Firewall with only internal interfaces - no NAT/PAT

Hello

I have a firewall (in this case a context within a FWSM, but I guess this applies also to any ASA) with only internal interfaces. That is, no interface is connected to internet, and there is no need for any address translation thru the fw.

What do I need to do to configure the firewall to not bother about NAT/PAT at all, and forward traffic only based on ACL:s?

The command "no nat-control" is a good start. But is there more that needs to be done?

Best regards

Jimmy

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Blue

Re: Firewall with only internal interfaces - no NAT/PAT

Hi Jimmy

That command will pretty much do it. Make sure once you have entered this command that you then don't have any nat/global statements as these would still be executed.

HTH

Jon

1 REPLY
Hall of Fame Super Blue

Re: Firewall with only internal interfaces - no NAT/PAT

Hi Jimmy

That command will pretty much do it. Make sure once you have entered this command that you then don't have any nat/global statements as these would still be executed.

HTH

Jon

110
Views
0
Helpful
1
Replies
CreatePlease to create content