Cisco ASA Series Cli Configuration Manual page 819

Software version 9.0 for the services module

Hide thumbs Also See for ASA Series:

Configuration manual (429 pages)

Getting started (31 pages)

Mount and connect (12 pages)

Table of Contents

Configuring Twice NAT

Detailed Steps

object service obj_name

service {tcp | udp} [source operator

port] [destination operator port]

hostname(config)# object service

REAL_SRC_SVC

hostname(config-service-object)# service

tcp source eq 80

hostname(config)# object service

MAPPED_SRC_SVC

hostname(config-service-object)# service

tcp source eq 8080

Configuring Dynamic NAT

This section describes how to configure twice NAT for dynamic NAT. For more information, see the

"Dynamic NAT" section on page

Source Dynamic PAT (Hide)—Source Dynamic PAT does not support port translation.

Source Static NAT or Static NAT with port translation—A service object can contain both a source

and destination port; however, you should specify either the source or the destination port for both

service objects. You should only specify both the source and destination ports if your application

uses a fixed source port (such as some DNS servers); but fixed source ports are rare. For example,

if you want to translate the port for the source host, then configure the source service.

Source Identity NAT—A service object can contain both a source and destination port; however, you

should specify either the source or the destination port for both service objects. You should only

specify both the source and destination ports if your application uses a fixed source port (such as

some DNS servers); but fixed source ports are rare. For example, if you want to translate the port

for the source host, then configure the source service.

Destination Static NAT or Static NAT with port translation (the destination translation is always

static)—For non-static source NAT, you can only perform port translation on the destination. A

service object can contain both a source and destination port, but only the destination port is used

in this case. If you specify the source port, it will be ignored.

Adds a service object.

Cisco ASA Series CLI Configuration Guide

Configuring Twice NAT

Show Quick Links

Chapters

Table of Contents

Troubleshooting

Cisco ASA Series Cli Configuration Manual page 819

Hide quick links:

Chapters

Troubleshooting

Related Manuals for Cisco ASA Series

Related Products for Cisco ASA Series

This manual is also suitable for:

Table of Contents