to allow access to a external PPTP server. When I run a debug icmp trace (after starting a ping to a external IP)I can see the packets are not being natted to the above rather the hider ip, yet when I ping the external IP I can see it does translate correctly. The external and internal IP in the NAT statement are not specified anywhere else in the config. The translation is show in a show xlate output:
Global 188.8.131.52 Local 172.16.251.251
The internal host which is behind a core switch is locally firewalled so does not allow icmp traffic not that I can see this impacting. Has anyone else come across this or any suggestions on why the NAT would only be occuring in one direction?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...