04-27-2009 07:45 PM - edited 03-04-2019 04:33 AM
Hi, if we have Inside IP in PAT and Static NAT, which would be prioritize. In below mail,10.10.1.2 IP falls in both Overload and Static nat. When traffic going from this host to outside, it will applicable for Static NAT 64.1.1.2 or PAT IP 64.1.1.10 ??
Ip nat pool verizon 64.1.1.10 64.1.1.10 netmask 255.255.255.240
Ip nat inside source list 1 pool verizon overload
Access-list 1 permit 10.0.0.0 0.255.255.255
Ip nat inside source static 10.10.1.2 64.1.1.2
04-27-2009 08:16 PM
the PAT list will be the priority. You would need to use an extended access list for the PAT access list if you wanted to have the 10.10.1.2 to be translated to 64.1.1.2. Like this:
ip nat pool verizon 64.1.1.10 64.1.1.10 netmask 255.255.255.240
Ip nat inside source list 100 pool verizon overload
access-list 100 remark *** DO NOT PAT STATIC NAT ADDRESSES ***
access-list 100 deny host 10.10.1.2 any
access-list 100 remark *** PAT ALL OTHER ADDRESSES ***
access-list 100 permit 10.0.0.0 0.255.255.255 any
Ip nat inside source static 10.10.1.2 64.1.1.2
04-27-2009 08:43 PM
Thanks sir.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: