• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 348
  • Last Modified:

Configure Cisco Firewall for NAT

Hello Everyone,
I know this is a very open question with many possibilities, especially since you will not be familiar with our network.

We have an MPLS through a vendor and they have a firewall that we manage. I have not used an ASA (i think thats what they call it) firewall before. I have watchguard firewalls in our offices that we have been using for a long time. The vendor set the firewall up for us since we have a few offices and I found out where to allow outgoing ports, but im not sure how i would set up a NAT from one of the public IPs they gave us to an internal server.

I see the options for Access Rules and NAT Rules, but im not sure which one is the way to go. Any guidance, even if its a very basic overview to get me started, would be great.

The only version numbers i see are when i log in to the device. It says: Cisco ASDM 6.2f for FWSM.
2 Solutions
Larry LarmeuPrincipal ConsultantCommented:
Won't be perfect because like you said their may be differences in your network.

In ASDM -> Configuration -> Firewall -> NAT Rules

Click the little down arrow for add and select Add network Object

Name is whatever you want to call it. If its an exchange server an appropriate name would be mail or exchange... whatever makes it easy for you.

Type: Host
Ip Address: The Inside address of the server.
Translated addres would be the external IP.

After you get the server natted you would go into access rules and permit/deny what you need to to the server. However the rules go in order of how they are entered.

So you would allow the traffic for the specific ports first then a deny all rule after.
msidnamAuthor Commented:
Thank you both. I had to use info from both of your comments.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now