NAT Exemption

Unanswered Question
May 15th, 2008
User Badges:

Hi Experts,


I have two interface dmz(S. level 90) and wan(s. level 60) i have two nat exemption rule

nat (dmz) 0 0.0.0.0 0.0.0.0

nat (wan) 0 0.0.0.0 0.0.0.0


i have one another static nat rule:

static(dmz,wan) 10.10.10.10 10.10.10.10


when i try to removing this natting rule, i get connection loss from wan..

after adding same static rule again get connection from wan to dmz..


please revert with proper solution to exempt nat.


Thanks in advance.........


Amit

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
srue Sun, 05/18/2008 - 18:04
User Badges:
  • Blue, 1500 points or more

is nat-control enabled?


vabruno Tue, 05/20/2008 - 19:01
User Badges:

I believe is you do a no nat-control then you wont need any NAT statements because you are trying to push traffic from DMZ to wan with is a lower security level and with NAT-control no enabled that traffic will not get NAT'd anyways.

amit.secure1 Tue, 05/20/2008 - 20:21
User Badges:

Thnks for ur reply...

now i got another major solution that is not documneted on cisco site, i taking confimration from cisco for same changes.


now i am closing this coversation

Actions

This Discussion