<div>
Can you provide your full config?
</div>


<div>
what part do you want to look at? &nbsp;I would rather not post the whole config, it is very long.
</div>


what part do you want to look at?  I would rather not post the whole config, it is very long.

<div>
I resolved it myself, well it resolved it on its own.
</div>


I resolved it myself, well it resolved it on its own.

<div>
<div class="content wysiwyg-content">
I am in the process of converting our ASA 5520 from 7.2 to 8.3.2 and everything has worked except for my PAT from inside to DMZ. &nbsp;<br />
<br />
in 7.2 we had:<br />
global (dmz) 1 192.168.0.10<br />
<br />
In 8.3.2 I converted it to:<br />
object network dmz_net<br />
&nbsp; &nbsp;subnet 0.0.0.0 0.0.0.0 <br />
&nbsp; &nbsp;nat (inside,dmz) dynamic 192.168.0.10<br />
<br />
<br />
From what I understand that should be the same as before, but when I test this config the PAT is just bypassed and my real IP's are hitting the DMZ. &nbsp;Granted I know that by design the ASA is working as it should but pushing the real IP's, but the DMZ servers all have an internal network address which is causing a loop. &nbsp;So I need this PAT &quot;bandaid&quot; to work so I can slowly change to allow my real IP's. &nbsp;Any help would be great so I can try to figure out this problem.
</div>
</div>


I am in the process of converting our ASA 5520 from 7.2 to 8.3.2 and everything has worked except for my PAT from inside to DMZ.  

in 7.2 we had:
global (dmz) 1 192.168.0.10

In 8.3.2 I converted it to:
object network dmz_net
   subnet 0.0.0.0 0.0.0.0 
   nat (inside,dmz) dynamic 192.168.0.10


From what I understand that should be the same as before, but when I test this config the PAT is just bypassed and my real IP's are hitting the DMZ.  Granted I know that by design the ASA is working as it should but pushing the real IP's, but the DMZ servers all have an internal network address which is causing a loop.  So I need this PAT "bandaid" to work so I can slowly change to allow my real IP's.  Any help would be great so I can try to figure out this problem.

Cisco ASA 5520 seems to be bypassing PAT statement

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.