Preview Tool

Cisco Bug: CSCur00631 - Enhancement Request: Allow DNS doctoring when using manual NAT on ASA

Last Modified

May 20, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.3 8.4(5) 8.6(0) 9.1 9.2

Description (partial)

The ASA running v8.3 and later does not support DNS doctoring / rewrite on manual NAT:

nat (inside,outside)  source static destination static 10
.53.1.0 dns
ERROR: % Invalid input detected at '^' marker.

We need to specify DNS doctoring / rewrite just for some specific destinations in a NAT statement, we need to use manual NAT with DNS doctoring / rewrite on ASA 8.3 and later.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.