Dear Experts,
I have been stuck in this scenario and not able to understand what is wrong.
I would truly appreciate your help..
Topology is R1--ASA1--R2
Subnet R1--ASA1 (136.1.121.0/24) (INSIDE)
Subnet ASA1-R2 (136.1.122.0/24) (OUTSIDE)
I have been trying to nat the outside network (between ASA1/R2) to the
inside interface of ASA1 (PAT). The configuration is shown:
nat (outside) 1 136.1.122.0 255.255.255.0 outside
global (inside) 1 interface
access-list OUT_IN permit ip any any
access-group OUT_IN interface outside
When pinging from R2 to R1 as far as I understand, R2's address
(!36.1.122.2) will be mapped to (136.1.121.12) ASA's inside interface, and
then R1 will respond to this and then the opposite mapping will take place
from ASA's inside interface to R2.
show xlate (does indeed show translation happening)
PAT Global 136.1.121.12(33122) Local 136.1.122.2 ICMP id 33
When doing a capture on inside interface this is what I see however on the
inside interface I should see the translated address of R2(ASA inside)
however it doesn't show
12: 17:53:26.816211 136.1.122.2 > 136.1.121.1: icmp: echo request
31: 17:53:48.886718 136.1.122.2 > 136.1.121.1: icmp: echo request
32: 17:53:50.885894 136.1.122.2 > 136.1.121.1: icmp: echo request
33: 17:53:52.889190 136.1.122.2 > 136.1.121.1: icmp: echo request
34: 17:53:54.892486 136.1.122.2 > 136.1.121.1: icmp: echo request
35: 17:53:56.895766 136.1.122.2 > 136.1.121.1: icmp: echo request
37: 17:53:58.895003 136.1.122.2 > 136.1.121.1: icmp: echo request
38: 17:54:00.898299 136.1.122.2 > 136.1.121.1: icmp: echo request
39: 17:54:02.901518 136.1.122.2 > 136.1.121.1: icmp: echo request
40: 17:54:04.900786 136.1.122.2 > 136.1.121.1: icmp: echo request
Best Regards,
-- KJ Blogs and organic groups at http://www.ccie.netReceived on Sat Aug 14 2010 - 23:40:22 ART
This archive was generated by hypermail 2.2.0 : Wed Sep 01 2010 - 11:20:52 ART