There are two types of interface objects: security zones and interface groups. The key difference is that interface groups can overlap. Only security zones can be used in access control policy rules.
LAB FTD 7.4
FTD has two outside interface, for LAN network objest, only one Auto-NAT can be created
1. When try to create another Auto-NAT with destination Interface Object Zone-Outside2, got the error:
2. When try to add outside2 interface to the same zone Zone-Outside which interface outside belongs to, got the error:
2 Solutions:
1. Create NAT Rules Before or NAT Rules After with Interface Group instead of Auto NAT
Comments
Post a Comment