Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAT incoming vpn's

i am running into problems trying to NAT incoming vpn connections. here are all the outputs that i think would show the problem. if you need more please ask

access-list vpn_nat extended permit ip log

nat (Outside) 1 access-list vpn_nat

but I do not see the hit count increasing on the nat

NAT policies on Interface Outside:

match ip Outside Outside

dynamic translation to pool 1 ( [Interface PAT])

translate_hits = 0, untranslate_hits = 0

DCP-ASA5520-2# sh vpn-sessiondb remote

Session Type: Remote

Username : remote

Index : 1

Assigned IP : Public IP : 12.xx.xx.xx

Protocol : IPSec Encryption : 3DES

Hashing : MD5

Bytes Tx : 0 Bytes Rx : 3297

Client Type : IOS Client Ver : 12.4(4)T2

Group Policy : remote_sites

Tunnel Group : remote_sites

Login Time : 06:31:29 UTC Thu Mar 29 2007

Duration : 0h:10m:31s

Filter Name :

NAC Result : Unknown

Posture Token:

Here are my pools for the incoming vpn's

ip local pool NAT_VPN_Routers mask

tunnel-group remote_sites general-attributes

address-pool NAT_VPN_Routers

New Member

Re: NAT incoming vpn's

Posture Token?Informational text string configurable on the Access Control Server. The ACS downloads the posture token to the security appliance for informational purposes to aid in system monitoring, reporting, debugging, and logging. A typical posture token is Healthy, Checkup, Quarantine, Infected, or Unknown.

CreatePlease to create content