Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
999
Views
0
Helpful
1
Replies

multiple nat/pat statements - algorithm...

pavlosd
Level 2
Level 2

‎02-05-2010 02:01 AM - edited ‎03-11-2019 10:05 AM

I was trying to find the logic (algorith) of how NAT / PAT staements are assigned by PIX.....

For example:

nat (inside) 10 10.0.0.0 255.0.0.0

global (outside) 10 1.1.1.1- 1.1.1.10 netmask 255.255.255.255

global (outside) 10 1.1.1.11 netmask 255.255.255.255

global (outside) 10 1.1.1.12 netmask 255.255.255.255

global (outside) 10 1.1.1.13 netmask 255.255.255.255

According to the ardicle below, it should exsaust first all nat address and then pat.

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/gh_72.html#wp1688051

but what about when multiple PATs are defined?

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎02-11-2010 08:56 PM

Only when the PAT ports of the first PAT ip are filled is the ASA going to use the second PAT address.

I hope it helps.

PK

0 Helpful
Review Cisco Networking for a $25 gift card
Top