05-16-2012 06:42 AM - edited 03-11-2019 04:07 PM
Cisco Adaptive Security Appliance Software Version 8.3(1)
Device Manager Version 6.3(1)
I have a Cisco ASA5520 that I have setup to allow a GRE tunnel through from a router at site B. This all works fine when I use the below NAT with associated router object on the inside
object network SWTEST
nat (inside,outside) static interface
My problem comes in that this kills off my Cleintless VPN connection to the same firewall, I changed my NAT to point at another of my statically assigned IP addresses, and then nothing works. Can anyone help with what I've done wrong, or what i should do? My rule base allows any GRE in from the source, and rules all look fine
I'm guessing that I should do the below, but it doesn't work
object network SWTEST
nat (inside,outside) static 195.224.23.23
Thanks alot
Stuart
Solved! Go to Solution.
05-16-2012 11:53 AM
Hello Stuart,
Did you clear the xlate table, conn table and the local-host table after making the changes
Configuration looks fine, please do a packet tracer like this:
packet-tracer input outside tcp 4.2.2.2 1025 195.224.23.23 80
I think our next step would be to do captures.
Regards,
05-16-2012 11:53 AM
Hello Stuart,
Did you clear the xlate table, conn table and the local-host table after making the changes
Configuration looks fine, please do a packet tracer like this:
packet-tracer input outside tcp 4.2.2.2 1025 195.224.23.23 80
I think our next step would be to do captures.
Regards,
05-31-2012 04:06 AM
Hi jcarvaja,
That worked. Clearing the tables was succesful. Thanks alot for your help on this. Sorry it's taken a while to get back to you.
Stuart
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide