I am looking to get a basic NAT config for an ASA running 8.2.1 software. I want to NAT all internal traffic to ip address of the outside interface on ASA and am looking for a working config for the NAT piece. My current config is below. Apologies if this is a simple config, but I am a Cisco voice engineer and do not have much experience with ASAs.
interface GigabitEthernet0/0 nameif inside security-level 100 ip address 10.10.254.250 255.255.255.0 ! interface GigabitEthernet0/1 shutdown no nameif no security-level no ip address ! interface GigabitEthernet0/2 shutdown no nameif no security-level no ip address ! interface GigabitEthernet0/3 nameif outside security-level 0 ip address 22.214.171.124 255.255.255.192
access-list inside-nat extended permit ip object-group uclab_inside any access-list inside-acl extended permit object-group Inside-Services object-group uclab_inside any access-list inside_nat0_outbound extended permit ip any 192.168.253.0 255.255.255.240 access-list inside_access_in extended permit ip 10.10.254.0 255.255.255.0 any access-list inside_access_in extended permit ip object-group uclab_inside any access-list inside_access_in extended permit ip object-group Inside_Net any
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...