Basic ASA NAT

TOP:

R1------------------inside ASA outside--------------R2

1+Basic configure:

R1:
interface f0/0
    ip address 192.168.1.1 255.255.255.0
    no shutdown
    
ip route 0.0.0.0 0.0.0.0 192.168.1.254

R2:
interface f0/0
    ip address 202.1.1.1 255.255.255.0
    no shutdown
ip route 0.0.0.0 0.0.0.0 202.1.1.254

ASA:

interface g1
    nameif inside
    ip address 192.168.1.254 255.255.255.0
    no shutdown

interface g2
    nameif outside
    ip address 202.1.1.254 255.255.255.0
    no shutdown

telnet 0 0 inside
ssh 0 0 inside
http 0 0 inside
http server enable

2+nat

object network inside
    subnet 192.168.1.0 255.255.255.0
object network outside-pool
    rang 202.1.1.10 202.1.1.15

object network inside
    nat (inside,outside) dynamic outside-pool

3+acl+policy
access-list inside_access_in extended permit icmp any any 
access-list outside_access_in extended permit icmp any any 
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside