Hello
Try the following:
no ip nat inside source list NAT interface GigabitEthernet0/0/0 overload
no ip access-list standard NAT
int looopback 0
ip address 169.254.255.254 255.255.255.255
ip nat inside
router-map PBR
set interface loopback 0
int vlan 60
no ip nat inside
ip nat outside
ip policy route-map PBR
ip access-list extended Public-NAT
deny ip 192.168.4.0 0.0.0.255 deny ip 192.168.4.0 0.0.0.255
deny ip 192.168.2.0 0.0.0.255 deny ip 192.168.2.0 0.0.0.255
permit ip deny ip 192.168.2.0 0.0.0.255 any
permit ip deny ip 192.168.4.0 0.0.0.255 any
ip access-list extended Hairpin-NAT
permit ip 192.168.2.0 0.0.0.255 host 192.168.2.1
permit ip 192.168.4.0 0.0.0.255 host 192.168.2.1
ip route 0.0.0.0 0.0.0.0 gig0/0/0 dhcp
ip nat inside source list Public-NAT gig0/0/0
ip nat inside source list Hairpin-NAT gig0/0/0
Please rate and mark as an accepted solution if you have found any of the informa