How to resolve invalid NAT rules in Expedition

Reply
L0 Member

How to resolve invalid NAT rules in Expedition

I've downloaded and run the latest Expedition VM, and have imported my Cisco ASA config file, but Expedition says all my NAT rules are invalid.  Not clear what that means, and the instructions (link below) say nothing about how to resolve them.

 

https://live.paloaltonetworks.com/t5/Expedition-Articles/Expedition-Documentation/ta-p/215619?attach...

 

Any ideas guys?

L0 Member

Re: How to resolve invalid NAT rules in Expedition

In fact, it appears that every single NAT rule in ASA was interpreted in the reverse by Expedition...

 

IE: "From" network is the destination one, and "source" host is the destination source.  Useless much?

L1 Bithead

Re: How to resolve invalid NAT rules in Expedition

Hi,

 

Were you able to resolve this issue, my problem is that the static rules are being skipped by expedition. 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!