Filter
Top Products
5-14
Cisco ASDM User Guide
OL-16647-01
Chapter 5 Using the Startup Wizard
Startup Wizard Screens for the ASA 5505 Adaptive Security Appliance
• Enable auto-configuration—Check this check box to allow automatic configuration of the DNS
server, WINS server, lease length, and ping timeout settings.
• DNS Server 1—Specifies the IP address of the DNS server.
• WINS Server 1—Specifies the IP address of the WINS server.
• DNS Server 2—Specifies the IP address of the alternate DNS server.
• WINS Server 2—Specifies the IP address of the alternate WINS server.
• Lease Length (secs)—Specifies the amount of time (in seconds) that the client can use its allocated
IP address before the lease expires. The default value is 3600 seconds (1 hour).
• Ping Timeout—Specifies the parameters for the ping timeout value in milliseconds.
• Domain Name—Specifies the domain name of the DNS server to use DNS.
• Enable auto-configuration from interface—Check this check box to enable DHCP
auto-configuration and choose the interface from the menu. The values you specify in the previous
areas of this pane take precedence over the auto-configured values.
For More Information
See the Cisco ASA 5500 Series Adaptive Security Appliance Getting Started Guide and the Cisco ASA
5505 Getting Started Guide.
Modes
The following table shows the modes in which this feature is available:
Step 14 - Address Translation (NAT/PAT)
This screen lets you configure NAT and PAT on your security appliance. To access this feature from the
main ASDM application window, choose Configuration > NAT.
PAT lets you set up a single IP address for use as the global address. In addition, you can set multiple
outbound sessions to appear as if they originate from a single IP address. PAT lets up to 65,535 hosts
start connections through a single outside IP address.
If you decide to use NAT, enter an address range to use for translating all addresses on the inside interface
to addresses on the outside interface. The global addresses in the pool provide an IP address for each
outbound connection, and for those inbound connections resulting from outbound connections.
When you use PAT, be aware of the following:
• PAT does not work with caching name servers.
• You may need to enable the corresponding inspection engine to pass multimedia application
protocols through the security appliance.
• PAT does not work with the established command.
• With passive FTP, use the inspect protocol ftp strict command with the access-list command to
allow outbound FTP traffic.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• • • •—