Hi guys, I was just wondering what is the difference between the two. As far as I know, the only difference is that source list can be used to define a range of addresses (e.g an entire subnet) whereas source static will only cover the specified IP address. Is this the only difference?
The reason why I ask is because I have seen a config which uses both commands for the one IP address. Eg.
ip nat inside source list NAT interface GigabitEthernet0/1 overload
ip nat inside source static tcp 10.11.11.1 8080 interface GigabitEthernet0/1 8080
ip access-list standard NAT_LIST
Why is it necessary to put the IP as part of a list and a static assignment?
Yes, that is correct, normally if one have spare public IP addresses if we assume this scenario one would simply write several " ip nat inside source static "local_ IP" "global_ip " addresses and create access-list permiting traffic for specific ports or have acls wide opened for any tcp/udp ports inbound.