cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
998
Views
0
Helpful
0
Comments
TCC_2
Level 10
Level 10

Core issue

This problem occurs when users share an Access Control List (ACL) with a Network Address Translation (NAT) policy. That is, the same ACL is used more than once in the Command Line Interface (CLI) NAT.

For example:

nat (inside) 1 access-list
nat (dmz) 1 access-list

This issue is documented in Cisco bug ID CSCsd98278.

Resolution

As a workaround, make copies of the ACL so it is no longer shared.

For example:

access-list < mypool1>  ...

access-list ...

global (outside) 1 10.1.1.1
nat (inside) 1 access-list
nat (dmz) 1 access-list

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: