Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
0
Helpful
1
Replies

natting to a pool of addresses

ozgurg
Level 1
Level 1

‎09-04-2003 06:59 AM - edited ‎03-09-2019 04:39 AM

here is my problem.

if i use the command...

global (outside) 1 209.165.201.1-209.165.201.10 netmask 255.255.255.224

first 10 hosts are translated sequentially to .1 through .10,

but the 11th host is not translated.!!

unless i define an extra pat statement under that one.

i want the 11th host to take .1 again.

12 th .2 and so on...

is that possible?

best regards...

Labels:
0 Helpful
1 Reply 1

bdube
Level 2
Level 2

‎09-04-2003 07:13 AM

No, that kind of algorithm isn't supported. The PIX takes the first available IP address in the NAT pool, if there isn't, it takes the PAT. If you don't configure PAT and the 11th simultaneuous connection arrives, the PIX cannot kicked out a previous one, there isn't any priority mechanism for this.

Regards

Ben

0 Helpful
Customers Also Viewed These Support Documents