Home > Cisco > Computer Equipment > Cisco Asdm 7 User Guide

Cisco Asdm 7 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Asdm 7 User Guide. The Cisco manuals for Computer Equipment are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 121

    Page 121 4-35 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT Step 9Click Advanced to configure the real and mapped interfaces and port translation for SMTP. Step 10Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply. DNS Server on Mapped Interface, Web Server on Real Interface (Static NAT with DNS Modification) For example, a DNS server is accessible... 
     
4-35
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
Step 9Click Advanced to configure the real and mapped interfaces and port translation for SMTP.
Step 10Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply.
DNS Server on Mapped Interface, Web Server on Real Interface (Static NAT 
with DNS Modification)
For example, a DNS server is accessible...

    Page 122

    Page 122 4-36 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT When an inside host sends a DNS request for the address of ftp.cisco.com, the DNS server replies with the mapped address (209.165.201.10). The ASA refers to the static rule for the inside server and translates the address inside the DNS reply to 10.1.3.14. If you do not enable DNS reply modification, then the inside host attempts... 
     
4-36
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
When an inside host sends a DNS request for the address of ftp.cisco.com, the DNS server replies with 
the mapped address (209.165.201.10). The ASA refers to the static rule for the inside server and 
translates the address inside the DNS reply to 10.1.3.14. If you do not enable DNS reply modification, 
then the inside host attempts...

    Page 123

    Page 123 4-37 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT Step 2Define the FTP server address, and configure static NAT with DNS modification: Step 3Click Advanced to configure the real and mapped interfaces and DNS modification. Step 4Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply. 
     
4-37
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
Step 2Define the FTP server address, and configure static NAT with DNS modification:
Step 3Click Advanced to configure the real and mapped interfaces and DNS modification.
Step 4Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply.

    Page 124

    Page 124 4-38 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT DNS Server and FTP Server on Mapped Interface, FTP Server is Translated (Static NAT with DNS Modification) Figure 4-6 shows an FTP server and DNS server on the outside. The ASA has a static translation for the outside server. In this case, when an inside user requests the address for ftp.cisco.com from the DNS server, the DNS... 
     
4-38
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
DNS Server and FTP Server on Mapped Interface, FTP Server is Translated 
(Static NAT with DNS Modification)
Figure 4-6 shows an FTP server and DNS server on the outside. The ASA has a static translation for the 
outside server. In this case, when an inside user requests the address for ftp.cisco.com from the DNS 
server, the DNS...

    Page 125

    Page 125 4-39 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT Step 2Define the FTP server address, and configure static NAT with DNS modification: Step 3Click Advanced to configure the real and mapped interfaces and DNS modification. Step 4Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply. 
     
4-39
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
Step 2Define the FTP server address, and configure static NAT with DNS modification:
Step 3Click Advanced to configure the real and mapped interfaces and DNS modification.
Step 4Click OK to return to the Edit Network Object dialog box, click OK again, and then click Apply.

    Page 126

    Page 126 4-40 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT IPv4 DNS Server and FTP Server on Mapped Interface, IPv6 Host on Real Interface (Static NAT64 with DNS64 Modification) Figure 4-6 shows an FTP server and DNS server on the outside IPv4 network. The ASA has a static translation for the outside server. In this case, when an inside IPv6 user requests the address for ftp.cisco.com... 
     
4-40
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
IPv4 DNS Server and FTP Server on Mapped Interface, IPv6 Host on Real 
Interface (Static NAT64 with DNS64 Modification)
Figure 4-6 shows an FTP server and DNS server on the outside IPv4 network. The ASA has a static 
translation for the outside server. In this case, when an inside IPv6 user requests the address for 
ftp.cisco.com...

    Page 127

    Page 127 4-41 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT b.Define the FTP server address, and configure static NAT with DNS modification and, because this is a one-to-one translation, configure the one-to-one method for NAT46. c.Click Advanced to configure the real and mapped interfaces and DNS modification. 
     
4-41
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
b.Define the FTP server address, and configure static NAT with DNS modification and, because this 
is a one-to-one translation, configure the one-to-one method for NAT46.
c.Click Advanced to configure the real and mapped interfaces and DNS modification.

    Page 128

    Page 128 4-42 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT d.Click OK to return to the Edit Network Object dialog box. Step 2Configure NAT for the DNS server. a.Create a network object for the DNS server address. b.Define the DNS server address, and configure static NAT using the one-to-one method. 
     
4-42
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
d.Click OK to return to the Edit Network Object dialog box.
Step 2Configure NAT for the DNS server.
a.Create a network object for the DNS server address.
b.Define the DNS server address, and configure static NAT using the one-to-one method.

    Page 129

    Page 129 4-43 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT c.Click Advanced to configure the real and mapped interfaces. d.Click OK to return to the Edit Network Object dialog box. Step 3Configure an IPv4 PAT pool for translating the inside IPv6 network. Under NAT, uncheck the Add Automatic Address Translation Rules check box. Step 4Configure PAT for the inside IPv6 network. a.Create a... 
     
4-43
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
c.Click Advanced to configure the real and mapped interfaces.
d.Click OK to return to the Edit Network Object dialog box.
Step 3Configure an IPv4 PAT pool for translating the inside IPv6 network.
Under NAT, uncheck the Add Automatic Address Translation Rules check box.
Step 4Configure PAT for the inside IPv6 network.
a.Create a...

    Page 130

    Page 130 4-44 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 4 Configuring Network Object NAT (ASA 8.3 and Later) Configuration Examples for Network Object NAT c.Next to the PAT Pool Translated Address field, click the ... button to choose the PAT pool you created earlier, and click OK. d.Click Advanced to configure the real and mapped interfaces. 
     
4-44
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 4      Configuring Network Object NAT (ASA 8.3 and Later)
  Configuration Examples for Network Object NAT
c.Next to the PAT Pool Translated Address field, click the ... button to choose the PAT pool you created 
earlier, and click OK.
d.Click Advanced to configure the real and mapped interfaces.
    Start reading Cisco Asdm 7 User Guide
    All Cisco manuals