• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 805
  • Last Modified:

Gvie device behind Cisco ASA a public IP

We have a Cisco 5510 running v8.4.2 firmware.  We are currently utilizing it for 1 WAN and 1 LAN.  We have a need to have a device given a public IP (no nat).  What would be the best way to accomplish this without sticking the device in front of the ASA via switch/hub?
2 Solutions
if you have an available external ip, you can map it to your internal server and allow the traffic to pass directly to it, similar to this
That standard solution will not work in this case since he wants a public IP to go through the ASA.     HOwever, that standard solution is the usual way to get public web requests into an internal server.  

If you want public IP to pas the ASA and go directly into the hosts, then you can use the ASA's 'transparent mode'.       This means the ASA sits inline, does not do any Natting at all.     This is an either or scenario, you can't run transparent for 1 host.   Its all or nothing.  

Look here:
aiscomAuthor Commented:
I ended up choosing the 1-to-1 nat option instead.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now