Cisco Cisco Firepower Management Center 4000

Control

Series 3

When you create a new NAT policy you must, at minimum, give it a unique name. Although you are not 
required to identify policy targets at policy creation time, you must perform this step before you can 
apply the policy; see 

. If you apply a NAT policy with no rules 

to a device, the system removes all NAT rules from that device.

Admin/Network Admin

Select 

.

The NAT page appears.

Click 

.

The New NAT Policy pop-up window appears.

Give the policy a unique 

 and, optionally, a 

.

You can use all printable characters, including spaces and special characters.

Select the 

 where you want to apply the policy.

Use Ctrl and Shift to select multiple devices, or right-click to 

. To narrow the devices that 

appear, type a search string in the 

 field. To clear the search, click the clear icon (

).

Add the 

. You can click and drag, or you can click 

.

Click 

.

copy a NAT policy

click the copy icon (

). See 

 for more 

information.

view a PDF report that lists the current 
configuration settings in a NAT policy

click the report icon (

). See 

more information.

compare NAT policies

click 

. See 

 for 

more information.

delete a NAT policy

click the delete icon (

), then click 

, or click 

 if you decide not to 

delete the policy. When prompted whether to continue, you are also 
informed if another user has unsaved changes in the policy.

After you have applied a NAT policy to a managed device, you 
cannot delete the policy from the device. Instead, you must apply a 
NAT policy with no rules to remove the applied NAT rules from the 
managed device. You also cannot delete a policy that is the last 
applied policy on any of its target devices, even if it is out of date. 
Before you can delete the policy completely, you must apply a 
different policy to those targets.