There shouldn't be any difference between 6.3(1) and 6.3(2) as far as statics and ACL's go.
Kep in mind that 6.3(2) has been deferred and pulled from CCO because of a bug with it not keeping "nat 0" statements in its configuration, so after two reboots on 6.3(2) with nat 0 you would lose this command and probably cause problems on your network.
For this reason, I would not bother trying to figure this out and just stick with 6.3(1) until 6.3(3) is released shortly (no definate time frame as yet).
I have tested the firewall, and find it works now. I don't know what happened. Is it because of this version of the Software is not steadiable or beuase the hardware is not steadable. Do you still suggest me to downgrade the software version.
And could you please provide me the software 6.3(1) binary imagine file?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...