Hope someone can help on this one. I am currently testing the installation of a Pix 535 in the core of our network to segment different areas of our organisation. I dont want to use NAT on any of the Pix Interfaces and thought the nat-control option disabled this. After reading up further it says that this is only for outbound access.
Is there an easy way to configure this then using NAT Exemption or is this the only way to go ?
Thanks very much for your time in replying. I thought that this was the case but for some reason i am unable to cross through the pix interfaces, even with an access-list ALLOW-ALL extended permit ip any any on every interface.
Is it to do with the Security Levels ? In that a lower one cannot go to a higher one ? This wouldn't make sense in that you need to have statics for all your ip ranges ?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...