Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Help downgrading config from 8.3 to 8.2

I have a client using an old 8.2 IOS version of an ASA and I need to convert some of our standard configurations to 8.2 so it will work with his device.

 

 am unfamiliar with 8.2, so I am wondering if someone can give me the equivalent of the following 8.3 configuration in 8.2 format.

 

object-group network remote-networks
 network-object 10.10.5.0 255.255.255.240
 exit
object-group network local-networks
 network-object 10.42.11.0 255.255.255.0
 exit


access-list vpn-acl extended permit ip object-group local-networks object-group remote-networks

nat (inside,outside) source static local-networks local-networks destination static remote-networks remote-networks

 

Any help appreciated!

1 REPLY
Hall of Fame Super Silver

It looks like a partial

It looks like a partial config covering exemption of NAT for a site-site VPN. We would typically use something like:

access-list inside_nat0_outbound extended permit ip 10.10.5.0 255.255.255.240
10.42.11.0 255.255.255.0 
nat (inside) 0 access-list inside_nat0_outbound

A more complete setup can be seen in this Cisco example for site-site VPN (based on ASA 8.0).

46
Views
0
Helpful
1
Replies
CreatePlease to create content