In Progress

Help with NAT Configuration for Cisco ASA 5505

ASA 9.1

External Subnet: [url removed, login to view]

Firewall’s External Facing IP: [url removed, login to view]

Internal Subnet: [url removed, login to view] (Server VLAN)

VPN Client Subnet: [url removed, login to view]

Server1 Internal IP: [url removed, login to view]

Server1 External IP: [url removed, login to view]

Server2 Internal IP: [url removed, login to view]

Server2 External IP: [url removed, login to view]

Desired Behavior:

* Inbound connections to Server1 works for either external IP ([url removed, login to view]) or internal IP while VPN connected ([url removed, login to view])

* Outbound connections from Server1 appear as external IP ([url removed, login to view])

* Inbound connections to Server2 works for either external IP ([url removed, login to view]) or internal IP while VPN connected ([url removed, login to view])

* Outbound connections from Server1 appear as external IP ([url removed, login to view])

Current Behavior:

* Inbound connections work to either external IP or internal IP while VPN connected.

* Outbound connections to the Internet from Server do NOT work while static NAT is in place.

For example:

* If I remove the following two lines from the configuration:

object network INT_NC-SERVERB_[url removed, login to view]

nat (inside,outside) static EXT_[url removed, login to view]

* I am now able to ping 4.2.2.2 from SERVERB, but the external IP ([url removed, login to view]) for the server no longer works.

* If I add the two lines back into the configuration:

object network INT_NC-SERVERB_[url removed, login to view]

nat (inside,outside) static EXT_[url removed, login to view]

* I am no longer able to ping 4.2.2.2 from SERVERB, but the external IP ([url removed, login to view]) for the server works.

Skills: Cisco, Network Administration

See more: cisco asa 9.1 nat configuration, cisco asa static nat example, cisco asa pat configuration example, cisco asa 8.4 static nat example, cisco asa 8.2 nat, cisco asa nat configuration example, cisco asa nat types, cisco asa destination nat example, site site vpn cisco asa 5505 configuration, cisco asa 5505 vpn configuration, cli configuration cisco asa 5505, cisco asa 5505 vpn site site configuration, cisco asa 5505 ipsec vpn configuration, cisco asa 5505 configuration, connect openswan cisco asa 5505, cisco asa 5505 site site, openswan ipsec cisco asa 5505, configure site site vpn cisco asa 5505, cisco asa 5505 ddos, cisco asa 5505 configure site site

About the Employer:
( 0 reviews ) Raleigh, United States

Project ID: #16710505