Home > Cisco > Computer Equipment > Cisco Asdm 7 User Guide

Cisco Asdm 7 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Asdm 7 User Guide. The Cisco manuals for Computer Equipment are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 171

    Page 171 5-35 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 8Click OK to add the rule to the NAT table. Step 9Add a NAT rule for traffic from the inside network to DMZ network 2: By default, the NAT rule is added to the end of section 1. If you want to add a NAT rule to section 3, after the network object NAT rules, choose Add NAT Rule After Network Object NAT Rules. The Add NAT Rule dialog box appears. 
     
5-35
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 8Click OK to add the rule to the NAT table.
Step 9Add a NAT rule for traffic from the inside network to DMZ network 2:
By default, the NAT rule is added to the end of section 1. If you want to add a NAT rule to section 3, 
after the network object NAT rules, choose Add NAT Rule After Network Object NAT Rules.
The Add NAT Rule dialog box appears.

    Page 172

    Page 172 5-36 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 10Set the source and destination interfaces: Step 11For the Original Source Address, type the name of the inside network object (myInsideNetwork) or click the browse button to choose it. Step 12For the Original Destination Address, click the browse button to add a new network object for DMZ network 2 in the Browse Original Destination Address... 
     
5-36
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 10Set the source and destination interfaces:
Step 11For the Original Source Address, type the name of the inside network object (myInsideNetwork) or click 
the browse button to choose it.
Step 12For the Original Destination Address, click the browse button to add a new network object for DMZ 
network 2 in the Browse Original Destination Address...

    Page 173

    Page 173 5-37 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration. Step 13Set the NAT Type to Dynamic PAT (Hide): Step 14For the Translated Source Address, click the browse button to add a new network object for the PAT address in the Browse Translated Source Address dialog box. a.Add the new network object. b.Define... 
     
5-37
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration.
Step 13Set the NAT Type to Dynamic PAT (Hide):
Step 14For the Translated Source Address, click the browse button to add a new network object for the PAT 
address in the Browse Translated Source Address dialog box.
a.Add the new network object.
b.Define...

    Page 174

    Page 174 5-38 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration. Step 15For the Translated Destination Address, type the name of the Original Destination Address (DMZnetwork2) or click the browse button to choose it. Because you do not want to translate the destination address, you need to configure identity NAT for... 
     
5-38
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration.
Step 15For the Translated Destination Address, type the name of the Original Destination Address 
(DMZnetwork2) or click the browse button to choose it.
Because you do not want to translate the destination address, you need to configure identity NAT for...

    Page 175

    Page 175 5-39 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Different Translation Depending on the Destination Address and Port (Dynamic PAT) Figure 5-2 shows the use of source and destination ports. The host on the 10.1.2.0/24 network accesses a single host for both web services and Telnet services. When the host accesses the server for Telnet services, the real address is translated to... 
     
5-39
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Different Translation Depending on the Destination Address and Port (Dynamic 
PAT)
Figure 5-2 shows the use of source and destination ports. The host on the 10.1.2.0/24 network accesses 
a single host for both web services and Telnet services. When the host accesses the server for Telnet 
services, the real address is translated to...

    Page 176

    Page 176 5-40 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 2Set the source and destination interfaces: Step 3For the Original Source Address, click the browse button to add a new network object for the inside network in the Browse Original Source Address dialog box. a.Add the new network object. b.Define the inside network addresses, and click OK. 
     
5-40
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 2Set the source and destination interfaces:
Step 3For the Original Source Address, click the browse button to add a new network object for the inside 
network in the Browse Original Source Address dialog box.
a.Add the new network object.
b.Define the inside network addresses, and click OK.

    Page 177

    Page 177 5-41 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration. Step 4For the Original Destination Address, click the browse button to add a new network object for the Telnet/Web server in the Browse Original Destination Address dialog box. a.Add the new network object. b.Define the server address, and click OK.... 
     
5-41
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration.
Step 4For the Original Destination Address, click the browse button to add a new network object for the 
Telnet/Web server in the Browse Original Destination Address dialog box.
a.Add the new network object.
b.Define the server address, and click OK....

    Page 178

    Page 178 5-42 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 5For the Original Service, click the browse button to add a new service object for Telnet in the Browse Original Service dialog box. a.Add the new service object. b.Define the protocol and port, and click OK. c.Choose the new service object by double-clicking it. Click OK to return to the NAT configuration. Step 6Set the NAT Type to Dynamic PAT... 
     
5-42
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 5For the Original Service, click the browse button to add a new service object for Telnet in the Browse 
Original Service dialog box.
a.Add the new service object.
b.Define the protocol and port, and click OK.
c.Choose the new service object by double-clicking it. Click OK to return to the NAT configuration.
Step 6Set the NAT Type to Dynamic PAT...

    Page 179

    Page 179 5-43 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 7For the Translated Source Address, click the browse button to add a new network object for the PAT address in the Browse Translated Source Address dialog box. a.Add the new network object. b.Define the PAT address, and click OK. c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration. Step 8For the... 
     
5-43
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 7For the Translated Source Address, click the browse button to add a new network object for the PAT 
address in the Browse Translated Source Address dialog box.
a.Add the new network object.
b.Define the PAT address, and click OK.
c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration.
Step 8For the...

    Page 180

    Page 180 5-44 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 9Click OK to add the rule to the NAT table. Step 10Add a NAT rule for traffic from the inside network to the web server: By default, the NAT rule is added to the end of section 1. If you want to add a NAT rule to section 3, after the network object NAT rules, choose Add NAT Rule After Network Object NAT Rules. The Add NAT Rule dialog box appears. 
     
5-44
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 9Click OK to add the rule to the NAT table.
Step 10Add a NAT rule for traffic from the inside network to the web server:
By default, the NAT rule is added to the end of section 1. If you want to add a NAT rule to section 3, 
after the network object NAT rules, choose Add NAT Rule After Network Object NAT Rules.
The Add NAT Rule dialog box appears.
    Start reading Cisco Asdm 7 User Guide
    All Cisco manuals