Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
865
Views
0
Helpful
1
Replies

Precedence order on ACL and NAT rules

edy-rojas
Level 1
Level 1

‎03-12-2003 05:02 AM - edited ‎03-02-2019 05:48 AM

Hi All,

What is the precedence order on ACL and NAT Rules ??

I have an router that I made some NAT rules to hide some IP address.

When creating my ACL rules, I have to use the NAT'ed IP, or the original IP address ??

thanks,

Labels:
0 Helpful
1 Reply 1

wolfrikk
Level 3
Level 3

‎03-12-2003 05:13 AM

It depends on where the ACL is going to be placed. If it is on the outside network interface, the router will see the NAT'ed IP in the packets, not your inside ip addresses. You would want your ACL to us the NAT'ed (internet IP's) in this case. If the ACL is on the inside network interface, the internal IP's would be used.

I hope that helps.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents