nat

How to dynamic NAT on Cisco ASA ASDM

Dynamic NAT / PAT / HIDE NAT / NAT Overload Dynamic PAT (Port Address Translation), HIDE NAT and NAT Overload all refer to the same meaning – which is to dynamically NAT your internal network address segment to one IP…


How to setup a simple Cisco IOS Firewall

Classic Firewall There are two configuration models to setup a firewall on IOS; the classic firewall (used to be called CBAC – Context based access control) and the zone based firewall. In this post I’m going to document how to…




No Picture

Demystifying ASA/PIX Nat 0 vs Static

Firstly, Nat 0 and static can be used to achieve the same result of bypassing NAT, at least logically 🙂 However both are fundamentally different. Take a look at the following example: nat (inside) 0 192.168.1.1 255.255.255.255 and static (inside,dmz)…


No Picture

Upgrading an Entrepreneur ASP infrastructure – PART II

After analyzing the situation I have identified several key problems. 1. System Availability – Systems fail frequently due to hardware failures, DoS, and application failures. 2. Collocation is far and administration requires frequent visits 3. Mini tower servers consume space…


Troubleshooting Cisco PIX/ASA site to site IPsec VPN

A site to site IPsec VPN consists of two phases; Phase 1 – IKE exchange and Phase2 – Establishing the ipsec tunnels. It is important to figure out which part of the negotiation the VPN is failing at. However, before…