ASA Conversions

tapfuma72 · ‎04-09-2014

Hello Guys this is the first time i am dealing with conversions on static add nat. Unfortunate this is a remote office and i dont have access right now so cant send all my configs, this thing had me working all day trying to convert this, my tunnels are not coming up and i cant get to them but these are the only commands we have missing in this ASA with a 8.3 software. We typically downgrade but at this point it late and we need to get the site up fist. Below are my configs, i could use any help i am a newbie as well :-(

Can anyone tell me if this conversion is correct i am having major issues trying to convert my original commands with the new ones

Old Configuration

*****************************************************************************

static (inside,outside) udp interface 450000 10.0.0.1 4500 netmask 255.255.255.255
static (inside,outside) udp interface isakmp 10.0.0.1 isakmp netmask 255.255.255.255
static (inside,outside) tcp interface 22222 10.0.0.1 ssh netmask 255.255.255.255

New Migration

1)
object network object udp-450000
host 10.0.0.1
nat (inside,outside) static 69.255.255.41

2)
object network object udp-isakmp
host 10.0.0.1
nat (inside,outside) static 69.255.255.41 service udp 450000

3)
object network object tcp-22222
host 10.0.0.1
nat (inside,outside) static 69.255.255.41 service tcp 22222

Poonam Garg · ‎04-10-2014

Hi,

The correct config will be:

1)

object network object udp-450000
host 10.0.0.1
nat (inside,outside) static interface service udp 4500 450000

2)
object network object udp-isakmp
host 10.0.0.1
nat (inside,outside) static interface service udp 500 500

3)
object network object tcp-22222
host 10.0.0.1
nat (inside,outside) static interface service tcp 22 22222

HTH

"Please rate helpful posts"