{"id":547,"date":"2011-05-24T19:24:58","date_gmt":"2011-05-24T19:24:58","guid":{"rendered":"https:\/\/fir3netwp.gmsrrpobkbd.com\/2011\/05\/24\/cisco-asa-83-no-nat-nat-exemption\/"},"modified":"2021-08-01T08:15:39","modified_gmt":"2021-08-01T08:15:39","slug":"cisco-asa-83-no-nat-nat-exemption","status":"publish","type":"post","link":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html","title":{"rendered":"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption"},"content":{"rendered":"<p>As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now configured.<\/p>\n<p>Below provides examples of both pre and post 8.3 no NAT configurations.<\/p>\n<h4><strong>Example Details<\/strong><\/h4>\n<ul style=\"list-style-type: circle;\">\n<li>Local LAN &#8211; 192.168.0.0\/24<\/li>\n<li>Remote LAN &#8211; 172.168.0.0\/24<\/li>\n<li>Traffic is arriving on the inside interface and leaving the outside interface.<\/li>\n<\/ul>\n<h4><strong>Pre 8.3<\/strong><\/h4>\n<p>Pre 8.3 a access-list was configured to define the source network and destination network. This access-list is then referenced in a NAT 0 statement to ensure all traffic traveling from the local LAN to the remote LAN is not NAT`d.\u00a0 <strong><br \/>\n<\/strong><\/p>\n<pre class=\"prettyprint\">access-list NO-NAT permit ip 192.168.0.0 255.255.255.0 172.16.0.0 255.255.255.0\r\nnat (inside) 0 access-list NO-NAT<\/pre>\n<h4><strong>Post 8.3\u00a0 <\/strong><\/h4>\n<p>Within 8.3 and later the networks are defined as objects via the use of object groups. These object groups are then referenced within the NAT statement to define both the pre and post NAT (real \/ mapped) addresses.<\/p>\n<pre class=\"prettyprint\">object network LOCAL_LAN\r\nsubnet 192.168.0.0 255.255.0.0<\/pre>\n<p>object network REMOTE_LAN<br \/>\nsubnet 172.16.0.0 255.255.0.0<\/p>\n<p>nat (inside,outside) source static LOCAL_LAN LOCAL_LAN destination static REMOTE_LAN REMOTE_LAN<\/p>\n<p>To make things clearer you can see the structure of the NAT statement below.<\/p>\n<pre class=\"prettyprint\">nat (real interface,mapped interface) source static [real_object] [mapped_object] destination s\r\ntatic [real_object] [mapped_object]<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now configured. Below provides examples of both pre and post 8.3 no NAT configurations. Example Details Local LAN &#8211; 192.168.0.0\/24 Remote LAN &#8211; 172.168.0.0\/24 Traffic is arriving on the inside &#8230; <a title=\"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption\" class=\"read-more\" href=\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\" aria-label=\"Read more about Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption\">Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net<\/title>\n<meta name=\"description\" content=\"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net\" \/>\n<meta property=\"og:description\" content=\"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\" \/>\n<meta property=\"og:site_name\" content=\"Fir3net\" \/>\n<meta property=\"article:published_time\" content=\"2011-05-24T19:24:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-01T08:15:39+00:00\" \/>\n<meta name=\"author\" content=\"Rick Donato\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rick Donato\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\"},\"author\":{\"name\":\"Rick Donato\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\"},\"headline\":\"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption\",\"datePublished\":\"2011-05-24T19:24:58+00:00\",\"dateModified\":\"2021-08-01T08:15:39+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\"},\"wordCount\":176,\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"articleSection\":[\"Cisco Firewalls\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\",\"url\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\",\"name\":\"Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/#website\"},\"datePublished\":\"2011-05-24T19:24:58+00:00\",\"dateModified\":\"2021-08-01T08:15:39+00:00\",\"description\":\"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now\",\"breadcrumb\":{\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.fir3net.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security\",\"item\":\"https:\/\/www.fir3net.com\/security\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Firewalls\",\"item\":\"https:\/\/www.fir3net.com\/security\/firewalls\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Cisco Firewalls\",\"item\":\"https:\/\/www.fir3net.com\/security\/firewalls\/cisco\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.fir3net.com\/#website\",\"url\":\"https:\/\/www.fir3net.com\/\",\"name\":\"Fir3net\",\"description\":\"Keeping you in the know\",\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.fir3net.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.fir3net.com\/#organization\",\"name\":\"Fir3net\",\"url\":\"https:\/\/www.fir3net.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"contentUrl\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"width\":390,\"height\":88,\"caption\":\"Fir3net\"},\"image\":{\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\",\"name\":\"Rick Donato\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"caption\":\"Rick Donato\"},\"description\":\"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders.\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net","description":"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html","og_locale":"en_US","og_type":"article","og_title":"Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net","og_description":"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now","og_url":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html","og_site_name":"Fir3net","article_published_time":"2011-05-24T19:24:58+00:00","article_modified_time":"2021-08-01T08:15:39+00:00","author":"Rick Donato","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Rick Donato","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#article","isPartOf":{"@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html"},"author":{"name":"Rick Donato","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037"},"headline":"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption","datePublished":"2011-05-24T19:24:58+00:00","dateModified":"2021-08-01T08:15:39+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html"},"wordCount":176,"publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"articleSection":["Cisco Firewalls"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html","url":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html","name":"Cisco ASA 8.3 - No NAT \/ NAT Exemption - Fir3net","isPartOf":{"@id":"https:\/\/www.fir3net.com\/#website"},"datePublished":"2011-05-24T19:24:58+00:00","dateModified":"2021-08-01T08:15:39+00:00","description":"As we all know Cisco`s new ASA version 8.3 brings massive changes in NAT. This article describes and explains how NAT exemption (no NAT) is now","breadcrumb":{"@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fir3net.com\/Cisco-ASA\/cisco-asa-83-no-nat-nat-exemption.html#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fir3net.com\/"},{"@type":"ListItem","position":2,"name":"Security","item":"https:\/\/www.fir3net.com\/security"},{"@type":"ListItem","position":3,"name":"Firewalls","item":"https:\/\/www.fir3net.com\/security\/firewalls"},{"@type":"ListItem","position":4,"name":"Cisco Firewalls","item":"https:\/\/www.fir3net.com\/security\/firewalls\/cisco"},{"@type":"ListItem","position":5,"name":"Cisco ASA 8.3 &#8211; No NAT \/ NAT Exemption"}]},{"@type":"WebSite","@id":"https:\/\/www.fir3net.com\/#website","url":"https:\/\/www.fir3net.com\/","name":"Fir3net","description":"Keeping you in the know","publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fir3net.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.fir3net.com\/#organization","name":"Fir3net","url":"https:\/\/www.fir3net.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","contentUrl":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","width":390,"height":88,"caption":"Fir3net"},"image":{"@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037","name":"Rick Donato","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","caption":"Rick Donato"},"description":"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders."}]}},"_links":{"self":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/547"}],"collection":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/comments?post=547"}],"version-history":[{"count":0,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/547\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/media?parent=547"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/categories?post=547"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/tags?post=547"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}