Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
445
Views
0
Helpful
1
Replies

NAT 0 with ACL

getmedrew
Level 1
Level 1

‎04-08-2005 12:18 PM - edited ‎02-20-2020 09:27 PM

Hi guys.

I have a configuration like this

nat (ins) 1 int

Nat (ins) 0 acl nonat

and also

acl nonat permit ip from lan 1 to lan 2

The question is that this scenario does not work. I mean the pix will translate the inside host that goes to lan 2 to the interface outside ip address for some reason. I am using pix 6.3.3. I have cleared the xlate table and still the pix will do the translation when syntactically is correct not to translate.

Can someone share if there is a caveat on the OS itself? Like I said I have double-checked the syntax statements and they all seem to be correct...

Thanks for your help

Labels:
0 Helpful
1 Reply 1

fedrodri
Level 1
Level 1

‎04-08-2005 04:11 PM

Drew,

Get us the config so we can double check it for you. If you have the config as you mentionned, it should be working for traffic matching the criterias on ACL nonat... Did you try a 'clear local' as well? I've heard of no caveats for these kind of problems. Do a 'clear xlate' and 'clear local' and then do a 'show local ip-on-lan1'... It would be OK to get translated to the outside interface, if any of the connections shown are matching the criterias on ACL nonat. I would like to take a look at that 'show local', if you could post it as well, that'll be great.

A pleasure, my friend!

Federico Rodriguez

0 Helpful
Customers Also Viewed These Support Documents