Home > Cisco > Computer Equipment > Cisco Asdm 7 User Guide

Cisco Asdm 7 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Asdm 7 User Guide. The Cisco manuals for Computer Equipment are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 181

    Page 181 5-45 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT Step 11Set the real and mapped interfaces: Step 12For the Original Source Address, type the name of the inside network object (myInsideNetwork) or click the browse button to choose it. Step 13For the Original Destination Address, type the name of the Telnet/web server network object (TelnetWebServer) or click the browse button to choose it. Step... 
     
5-45
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
Step 11Set the real and mapped interfaces:
Step 12For the Original Source Address, type the name of the inside network object (myInsideNetwork) or click 
the browse button to choose it.
Step 13For the Original Destination Address, type the name of the Telnet/web server network object 
(TelnetWebServer) or click the browse button to choose it.
Step...

    Page 182

    Page 182 5-46 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT c.Choose the new service object by double-clicking it. Click OK to return to the NAT configuration. Step 15Set the NAT Type to Dynamic PAT (Hide): Step 16For the Translated Source Address, click the browse button to add a new network object for the PAT address in the Browse Translated Source Address dialog box. a.Add the new network object. b.Define... 
     
5-46
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
c.Choose the new service object by double-clicking it. Click OK to return to the NAT configuration.
Step 15Set the NAT Type to Dynamic PAT (Hide):
Step 16For the Translated Source Address, click the browse button to add a new network object for the PAT 
address in the Browse Translated Source Address dialog box.
a.Add the new network object.
b.Define...

    Page 183

    Page 183 5-47 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Configuration Examples for Twice NAT c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration. Step 17For the Translated Destination Address, type the name of the Original Destination Address (TelnetWebServer) or click the browse button to choose it. Because you do not want to translate the destination address, you need to configure identity NAT... 
     
5-47
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Configuration Examples for Twice NAT
c.Choose the new network object by double-clicking it. Click OK to return to the NAT configuration.
Step 17For the Translated Destination Address, type the name of the Original Destination Address 
(TelnetWebServer) or click the browse button to choose it.
Because you do not want to translate the destination address, you need to configure identity NAT...

    Page 184

    Page 184 5-48 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Feature History for Twice NAT Feature History for Twice NAT Ta b l e 5 - 1 lists each feature change and the platform release in which it was implemented. ASDM is backwards-compatible with multiple platform releases, so the specific ASDM release in which support was added is not listed. Table 5-1 Feature History for Twice NAT Feature NamePlatform Releases Feature Information Twice... 
     
5-48
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Feature History for Twice NAT
Feature History for Twice NAT
Ta b l e 5 - 1 lists each feature change and the platform release in which it was implemented. ASDM is 
backwards-compatible with multiple platform releases, so the specific ASDM release in which support 
was added is not listed.
Table 5-1 Feature History for Twice NAT
Feature NamePlatform 
Releases Feature Information
Twice...

    Page 185

    Page 185 5-49 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Feature History for Twice NAT Round robin PAT pool allocation uses the same IP address for existing hosts8.4(3) When using a PAT pool with round robin allocation, if a host has an existing connection, then subsequent connections from that host will use the same PAT IP address if ports are available. We did not modify any screens. This feature is not available in 8.5(1) or 8.6(1).... 
     
5-49
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Feature History for Twice NAT
Round robin PAT pool allocation uses the same 
IP address for existing hosts8.4(3) When using a PAT pool with round robin allocation, if a host 
has an existing connection, then subsequent connections 
from that host will use the same PAT IP address if ports are 
available.
We did not modify any screens.
This feature is not available in 8.5(1) or 8.6(1)....

    Page 186

    Page 186 5-50 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Feature History for Twice NAT Automatic NAT rules to translate a VPN peer’s local IP address back to the peer’s real IP address8.4(3) In rare situations, you might want to use a VPN peer’s real IP address on the inside network instead of an assigned local IP address. Normally with VPN, the peer is given an assigned local IP address to access the inside network. However, you might... 
     
5-50
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Feature History for Twice NAT
Automatic NAT rules to translate a VPN peer’s 
local IP address back to the peer’s real IP 
address8.4(3) In rare situations, you might want to use a VPN peer’s real 
IP address on the inside network instead of an assigned local 
IP address. Normally with VPN, the peer is given an 
assigned local IP address to access the inside network. 
However, you might...

    Page 187

    Page 187 5-51 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Feature History for Twice NAT NAT support for reverse DNS lookups 9.0(1) NAT now supports translation of the DNS PTR record for reverse DNS lookups when using IPv4 NAT, IPv6 NAT, and NAT64 with DNS inspection enabled for the NAT rule. Per-session PAT 9.0(1) The per-session PAT feature improves the scalability of PAT and, for clustering, allows each member unit to own PAT... 
     
5-51
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Feature History for Twice NAT
NAT support for reverse DNS lookups 9.0(1) NAT now supports translation of the DNS PTR record for 
reverse DNS lookups when using IPv4 NAT, IPv6 NAT, and 
NAT64 with DNS inspection enabled for the NAT rule.
Per-session  PAT 9.0(1) The per-session PAT feature improves the scalability of PAT 
and, for clustering, allows each member unit to own PAT...

    Page 188

    Page 188 5-52 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 5 Configuring Twice NAT (ASA 8.3 and Later) Feature History for Twice NAT 
     
5-52
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 5      Configuring Twice NAT (ASA 8.3 and Later)
  Feature History for Twice NAT

    Page 189

    Page 189 CH A P T E R 6-1 Cisco ASA Series Firewall ASDM Configuration Guide 6 Configuring NAT (ASA 8.2 and Earlier) This chapter describes Network Address Translation, and includes the following sections: NAT Overview, page 6-1 Configuring NAT Control, page 6-16 Using Dynamic NAT, page 6-17 Using Static NAT, page 6-27 Using NAT Exemption, page 6-33 NAT Overview This section describes how NAT works on the ASA, and includes the following topics: Introduction to NAT, page 6-1 NAT in Routed Mode, page 6-2 NAT in... 
    CH A P T E R
 
6-1
Cisco ASA Series Firewall ASDM Configuration Guide
 
6
Configuring NAT (ASA 8.2 and Earlier)
This chapter describes Network Address Translation, and includes the following sections:
NAT Overview, page 6-1
Configuring NAT Control, page 6-16
Using Dynamic NAT, page 6-17
Using Static NAT, page 6-27
Using NAT Exemption, page 6-33
NAT Overview
This section describes how NAT works on the ASA, and includes the following topics:
Introduction to NAT, page 6-1
NAT in Routed Mode, page 6-2
NAT in...

    Page 190

    Page 190 6-2 Cisco ASA Series Firewall ASDM Configuration Guide Chapter 6 Configuring NAT (ASA 8.2 and Earlier) NAT Overview general operations configuration guide for more information about security levels. See the “NAT Control” section on page 6-4 for more information about NAT control. NoteIn this document, all types of translation are referred to as NAT. When describing NAT, the terms inside and outside represent the security relationship between any two interfaces. The higher security level is... 
     
6-2
Cisco ASA Series Firewall ASDM Configuration Guide
 
Chapter 6      Configuring NAT (ASA 8.2 and Earlier)
  NAT Overview
general operations configuration guide for more information about security levels. See the “NAT 
Control” section on page 6-4 for more information about NAT control.
NoteIn this document, all types of translation are referred to as NAT. When describing NAT, the terms inside 
and outside represent the security relationship between any two interfaces. The higher security level is...
    Start reading Cisco Asdm 7 User Guide
    All Cisco manuals