05-05-2004 07:12 AM - edited 03-02-2019 03:29 PM
A co-worker and I are trying to figure out the reason for a particular statement in this example...hoping for some help. This example is the Surf & Sand network merger. Our question has to do with access-list 1. The exact line in question is this:
access-list 1 deny 10.255.13.254
I am having a very hard time comprehending the reason that the access list being applied on an inside interface is denying the outside interface. Can anyone clarify this for me? Come on guys get out your books and look at this for me. Thanks for your help.
bc
05-05-2004 04:36 PM
Hi..
access-list 1 deny 10.255.13.254 is to prevent the E1 ip address that connected to Sand being translated in to 203.100.176.0/20.
From my opinion.. NAT will still work without that additional deny ACL. I don't think E1 ip address will ever get translated in to NAT.. Except you want to translate ip nat outside....
05-06-2004 06:58 AM
Thats pretty much the same track that we were on...I don't know why the E1 would ever need to be translated.
Does anybody else have any ideas...something that we might have missed? Harrold...Shanky?
Either way...thanks for the help guys.
bc
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide