Difference between revisions of "Nextelco:ASA nat"
From its-wiki.no
| Line 1: | Line 1: | ||
= ASA NAT = | = ASA NAT = | ||
In this section we will set up NAT in order to translate all IP headers of the packets going from inside to outside interfaces. At the same time the ASA will translate the packets coming back from the outside interface. | In this section we will set up NAT in order to translate all IP headers of the packets going from inside to outside interfaces. At the same time the ASA will translate the packets coming back from the outside interface. | ||
| + | We assume that ASA has already VLANs, IPs, interfaces, and ICMP traffic inspection configured from previous step. | ||
| + | <ol> | ||
| + | <li>The first step is to configure an ''access-list'' which will identify all IP traffic going from inside 192.168.2.0/24 network to outside 10.10.10.0/24 network.</li> | ||
| + | ASA2(config)#access-list inside_nat_outside extended permit ip 192.168.2.0 255.255.255.0 10.10.10.0 255.255.255.0 | ||
| + | <li>After configuring the access-list</li> | ||
| + | </ol> | ||
Revision as of 12:27, 29 May 2014
ASA NAT
In this section we will set up NAT in order to translate all IP headers of the packets going from inside to outside interfaces. At the same time the ASA will translate the packets coming back from the outside interface. We assume that ASA has already VLANs, IPs, interfaces, and ICMP traffic inspection configured from previous step.
- The first step is to configure an access-list which will identify all IP traffic going from inside 192.168.2.0/24 network to outside 10.10.10.0/24 network.
- After configuring the access-list
ASA2(config)#access-list inside_nat_outside extended permit ip 192.168.2.0 255.255.255.0 10.10.10.0 255.255.255.0
Return to Phase 1 page.
