Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
673
Views
1
Helpful
2
Replies

ASA5525: Conn originating from outside interface not working- (NAT)

Go to solution
jmaxwellUSAF
VIP
VIP

‎10-06-2023 01:37 PM - edited ‎10-06-2023 01:39 PM

Hello.

My goal is to allow the router directly connected to the outside interface of the ASA5525 to send status messaged to an internal server. I've configured the outside ACL, and also routing. When I do a packet-tracer I receive a DROP at final step (has to do with NAT).

If the solution is to config an identity NAT, I worry that ALL traffic routing through this next hop will be identity-natted (though this may be an incorrect understanding.) See below...

Phase: 16
Type: NAT
Subtype: rpf-check
Result: DROP
Config:
nat (inside,outside) source dynamic any interface

---

May you please tell me how to fix this?

Thank you.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jmaxwellUSAF
VIP
VIP
In response to MHM Cisco World

‎12-11-2023 07:13 AM

Yes. I dont remember the solution. Thank you for your follow up.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
MHM Cisco World
VIP
VIP

‎12-10-2023 02:40 PM

are this issue solved?

Go to solution
jmaxwellUSAF
VIP
VIP
In response to MHM Cisco World

‎12-11-2023 07:13 AM

Yes. I dont remember the solution. Thank you for your follow up.

0 Helpful
Customers Also Viewed These Support Documents