Task
● Configure R1 ip is 192.168.1.1/24 and R2 ip 101.1.1.1/24
● Create 3 loopbacks on R1
àL1 ip is 192.168.101.1
àL2 ip is 192.168.102.1
● Configure ASA1 on e0 ip 192.168.1.10 nameif inside security level 100 and on e1 ip 101.1.1.10 nameif outside with security level of 0
● Rung EIGRP between ASA1 and R1
● Configure Section 2 nat so that any user is dynamically nat to the 101.1.1.11 – 101.1.1.13
● Allow an access-list to permit icmp traffic
● Ping R1 to R2
● Verify run “debug ip icmp” on R1 and R2
Explanation
Section-2 Nat is also called Auto Nat because , it maintains the Nat table so if you run command on ASA # show nat , you will find out that it will check for static nat first then the dynamic nat , if there is one nat rule either static nat / dynamic nat then the lowest ip address is check first then the highest ip address. Create an object network of Real ip call the subnet 0 0 and range of mapped ip and create nat statement in the Real-ip object
Configuration
On R1
On ASA1
On R2
On SW1
Eigrp on R1
Eigrp on ASA1
NAT
Result
Debug
