Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
401
Views
0
Helpful
1
Replies

isr without an access list

mialbert
Level 1
Level 1

‎04-20-2012 11:06 AM - edited ‎03-07-2019 06:15 AM

I have an 1800 isr that is running with port forwarding only.  It is running a series of ip nat inside source static address port address port commands.  It does not have an access list bound to the outside interface.  This is working fine, but i am wondering if this is a security concern

Labels:
0 Helpful
1 Reply 1

paolo bevilacqua
Hall of Fame
Hall of Fame

‎04-20-2012 02:03 PM

No, it is not.

Once you have NAT, no packets from outside can enter, unless a flow  is initiated from inside or static nat, in which case you want them to enter.

However some people don't trust that, and still want to use an ACL,

0 Helpful
Customers Also Viewed These Support Documents