Cisco Cisco ASA 5555-X Adaptive Security Appliance - No Payload Encryption
About the ASA REST API
NAT
NAT
26
Error Codes:
"RESOURCE-NOT-FOUND"
NAT
NAT API supports TwiceNAT (aka Manual NAT) and ObjectNAT (aka AutoNAT). Each NAT type has its unique URI.
before and after autoNATs is fully supported (Routed and Transparent mode).
before and after autoNATs is fully supported (Routed and Transparent mode).
Attributes for configuring InterfacePAT, DynamicPAT (hide), PAT Pool are also included in the API
Single list showing all NAT types (Twice and Auto) in the same list is not supported.
NAT Error Codes:
INVALID-NAT-RULE - NAT rule can be invalid because of many reasons for example; original source/destination and
translated source/destination address combination is not valid
INVALID-DESTINATION - Destination address (original/translated) is invalid
INVALID-SERVICE - Service is not valid
INVALID-SOURCE - Source address is invalid
DUPLICATE-NAT - Duplicate NAT (a rule matching the current rule already exist)
INVALID-INTERFACE - Interface is not valid input
INDEX-OOB - Position is incorrect
ObjectNAT (AutoNAT)
Limitations:
Creating an inline network object with NAT rule is not supported. To create an object NAT for an existing network object,
source Address should point to network object to be translated.
Error Codes:
See above.
TwiceNAT (Manual NAT)
BeforeNAT and afterNAT are separated into two lists and have their own URIs. Moving a beforeNAT to afterNAT or vice-
versa is not supported
Limitations:
N/A
Error Codes:
See above.