Hello,
I have 2811 Series Router with C2800NM-ADVIPSERVICESK9-M), Version 12.4(20)T
my config is :
ETH1 : inside 192.168.1.10
S0/0/0 : outside Encap PPP, outiside 41.12.110.165
CBAC applied on S0/0/0 (inspect out)
Inbound access list applied S0/0/0 to permit only the traffic inspected to return from outside.
Our ISP requested to NAT the traffic with source address 192.168.80.60
I've configured the NAT, but the problem is the returning traffic will be sent to 192.168.80.60 (I've seen my inbound s/0/0/ access list blocking traffic sent to 192.168.80.60 ).
So, is there any secure changes that we can do to change the order of operation of NAT / CBAC in order to treat packets by nat then pass all to access lists or cbac.
your help will be appreciated.
Thanks