Cisco Cisco ASA 5580 Adaptive Security Appliance Guía Para Resolver Problemas
ASA: Inbound Access to NAT Addresses Fails
After Upgrade to 8.4(3)
After Upgrade to 8.4(3)
Document ID: 113577
Contributed by Aaron Mcquaid, Cisco TAC Engineer.
Jul 02, 2012
Jul 02, 2012
Contents
Introduction
Prerequisites
Requirements
Components Used
Conventions
Symptoms
Conditions / Environment
Cause / Problem Description
Resolution
Related Information
Prerequisites
Requirements
Components Used
Conventions
Symptoms
Conditions / Environment
Cause / Problem Description
Resolution
Related Information
Introduction
This document provides information about NAT addresses that fail after upgrading the Adaptive Security
Appliance (ASA) to version 8.4(3). This document also provides a resolution to this issue.
Appliance (ASA) to version 8.4(3). This document also provides a resolution to this issue.
Prerequisites
Requirements
Readers of this document should have knowledge of these topics.
Basic understanding of the concept of Address Resolution Protocol (ARP) and proxy ARP
•
Components Used
The information in this document is based on these hardware and software versions.
Any Cisco ASA 5500 Series Adaptive Security Appliance
•
Adaptive Security Appliance version 8.4(3) or later
•
Conventions
For more information on document conventions, refer to Cisco Technical Tips Conventions.
Symptoms
Starting with ASA version 8.4(3), the ASA does not respond to ARP requests received on an interface, for IP
addresses that are not a part of that interface's IP subnet. Before version 8.4(3), the ASA would respond to
ARP requests that were not in the IP subnet of the ASA's interface.
addresses that are not a part of that interface's IP subnet. Before version 8.4(3), the ASA would respond to
ARP requests that were not in the IP subnet of the ASA's interface.