https://community.cisco.com/t5/network-security/static-pat/m-p/628962#M1028903 <HTML><HEAD></HEAD><BODY><P>I think you mean NAT. </P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>Should be access-list permit 100 tcp any host 10.1.1.1 eq 80</P><P>static(in,out) tcp 10.1.1.1 80 10.2.2.2 80</P><P>This is OK assuming the IP's are correct.</P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>Again make more restrictive!!</P><P>static(in,out) tcp 10.1.1.1 53 10.2.2.3 53</P><P>This is OK (this is for DNS zone transfers you know)</P><P></P><P>HTH and please rate.</P></BODY></HTML> Mon, 15 Jan 2007 22:18:03 GMT Collin Clark 2007-01-15T22:18:03Z https://community.cisco.com/t5/network-security/static-pat/m-p/628961#M1028901 <P>is this a valid static PAT</P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>static(in,out) tcp 10.1.1.1 80 10.2.2.2 80</P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>static(in,out) tcp 10.1.1.1 53 10.2.2.3 53</P> Mon, 11 Mar 2019 09:19:42 GMT https://community.cisco.com/t5/network-security/static-pat/m-p/628961#M1028901 aksher 2019-03-11T09:19:42Z https://community.cisco.com/t5/network-security/static-pat/m-p/628962#M1028903 <HTML><HEAD></HEAD><BODY><P>I think you mean NAT. </P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>Should be access-list permit 100 tcp any host 10.1.1.1 eq 80</P><P>static(in,out) tcp 10.1.1.1 80 10.2.2.2 80</P><P>This is OK assuming the IP's are correct.</P><P></P><P>access-list permit 100 tcp any host 10.1.1.1</P><P>Again make more restrictive!!</P><P>static(in,out) tcp 10.1.1.1 53 10.2.2.3 53</P><P>This is OK (this is for DNS zone transfers you know)</P><P></P><P>HTH and please rate.</P></BODY></HTML> Mon, 15 Jan 2007 22:18:03 GMT https://community.cisco.com/t5/network-security/static-pat/m-p/628962#M1028903 Collin Clark 2007-01-15T22:18:03Z