This is the syntax for Auto NAT is as follows (remember, this will be applied within the object definition): Which means each of the four types of translations ( Static NAT, Static PAT, Dynamic PAT, Dynamic NAT) can be configured with Auto NAT. With those items defined, we can finally discuss the definition and syntax of Auto NAT.Īuto NAT can be used anytime you need to make a NAT decision based upon only the Source of traffic. We discussed the configuration of Objects because Auto NAT is configured within the Object definition, and we discussed the keywords Real and Mapped because the syntax uses these terms to designate the addresses involved in the translation. Hence the Outside interface is considered the mapped interface.Īnother way to remember it is the mapped attributes only exist because the ASA created them, whereas the real attributes exist despite any configuration on the ASA. Moreover, the mapped address exists on the ASA’s Outside interface. Which makes 72.6.6.15 the mapped address. The word mapped indicates attributes after a translation has occurred.įor example, the real address 172.16.30.15 is being translated to 72.6.6.15. Hence, for the translation above, the Inside interface is considered the real interface. Moreover, the real IP exists on the ASA’s Inside interface. Hence, 172.16.30.15 is considered the real IP address. 15 is really configured with the IP address 172.16.30.15, which means the actual NIC really has the IP address 172.16.30.15 configured. The word real indicates what is really configured on a server.įor example, the web server at the IP address. We will define these with the example of a Static NAT below: These terms can be applied to IP addresses or interfaces. NAT configuration on the Cisco ASA will make use of the keywords real and mapped. If you had done the “pipe include” without the in-line option you just would have received the full name of the object, but not the object’s definition. Object network WEB-SERVER host 172.16.30.15 To configure a network object, first use the following syntax to create the object:Īsa98# show run object in-line | include WEB The idea is to configure and define an object, then reference that one item in your configuration by the object’s name.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |