Solved

Using Nats with Nat control off

Posted on 2007-11-21
2
804 Views
Last Modified: 2010-04-21
Is there any downside to using NATs (in particular NAT/Global combos) with Nat Controll off?  It is the default setting for the ASA and I haven't noticed any unusual behavior.  I have 6 vritual interfaces and only have the nat/global pair setup for traffic flowing from one of the 5 inside/dmz interfaces to the outside.
0
Comment
Question by:RolandCT
2 Comments
 
LVL 28

Accepted Solution

by:
Jan Springer earned 250 total points
ID: 20331400
If you're asking: is it okay that traffic between inside interfaces is not natted and the only traffic that gets natted is the traffic leaving the outside interface, then the answer is 'yes', that's preferred.

On other Cisco firewalls, I've had to disable nat between two non-outside interfaces.
0
 

Author Closing Comment

by:RolandCT
ID: 31410434
That pretty much confirms what I was seeing.  Thanks.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Trunk port configuration for Wireless VLANs 11 71
Single host traffic only allowed through ASA--strange. 4 42
traffic flow without STP 9 45
PEAP authentication 7 26
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
This is a video describing the growing solar energy use in Utah. This is a topic that greatly interests me and so I decided to produce a video about it.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now