Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
547
Views
4
Helpful
1
Replies

Simple NAT question

anowell
Level 3
Level 3

‎12-19-2012 04:22 AM - edited ‎03-11-2019 05:39 PM

Will someone please explain what this NAT rules does?  I'm confused by what happens to the packet when you use "dynamic" and a host that is 0.0.0.0

object network obj-0.0.0.0

host 0.0.0.0

!

object network ALL_ZEROS

subnet 0.0.0.0 0.0.0.0

nat (inside,outside) dynamic obj-0.0.0.0

Thanks in advance!

Labels:
0 Helpful
1 Reply 1

julomban
Level 8
Level 8

‎12-19-2012 05:57 AM

Hello,

You would use this type of NAT (Identity NAT) when you want to traffic from your inside interface to flow through to your outside interface without changing the address. An example scenario would be a private MPLS cloud with separate clients. Each client has a unique address space so NATing is not necessary. Using Identity NAT is the solution because it provides us with the privacy of only allowing inside hosts to initiate communication with outside hosts.

This is when your outside its a private range as well, if it is public you use regular PAT with the outside interface or any public IP:

object network ALL_ZEROS

subnet 0.0.0.0 0.0.0.0

nat (inside,outside) dynamic interface

On very specific/rare circumstances you want to use this NAT.

Regards,

Juan Lombana

Please rate helpful posts.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card