Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
574
Views
0
Helpful
2
Replies

No-Nat

kishore_b32
Level 1
Level 1

‎07-24-2006 04:55 AM

I have a doubt in PIX Firewall

Check this sample config:

------------------------

Nat (inside) 0 access-list test

Access-list test permit ip host 172.20.128.133 any

This mean the source 172.20.128.133 is allowed to access any destination without nat?

Whether we need to bind the same to the inside acl like:

# Access-list inside permit ip host 172.20.128.133 any

This is required ????

Kishore Kumar.B

Labels:
0 Helpful
2 Replies 2

mmorris11
Level 4
Level 4

‎07-24-2006 05:52 AM

This does mean that. This host address will never be translated using this config. No other config is neccessary to make this happen. It also means that ALL other hosts MUST be translated thus without a static or global for it to use, no traffic will flow for other hosts.

pls rate post if helpful.

0 Helpful

kishore_b32
Level 1
Level 1
In response to mmorris11

‎07-24-2006 09:56 PM

Morris,

Thanks for your comment.

Whether i need to add the acl on the inside interface for the Nat 0 even if i have many other ACL's binded to the inside interface.

0 Helpful
Customers Also Viewed These Support Documents