You are here
SEC0008 - ASA 8.3 8.4 NAT Migration Recommendation
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video combines the knowledge from our two previous videos on Object NAT and Twice NAT, and provides some guidelines on how to use them together on a single NAT table. We also discuss about pre-8.3 migration strategies and how the legacy command syntax (eg. nat, global, static, access-list) can be mapped to the new. We finish off the video with an experiment on the placement of destination NAT statement on the NAT table, and note its significance. We hope that you will have a better understanding on ASA 8.3 NAT by the end of this video.
Topic includes
- Object NAT and Twice NAT usage
- Pre-8.3 migration guidelines
- NAT-Control equivalence
- Significance of destination NAT placement
Notes:
- Source NAT is being matched top down
- Destination NAT takes place before Source NAT and determines which NAT statement/section will also be used for Source NAT.
VIRL Config File. Courtesy of Katherine McNamara @network-node.com
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.