Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
925
Views
0
Helpful
1
Replies

PIX NAT

lquin1978
Level 1
Level 1

‎11-28-2006 05:20 AM - edited ‎03-11-2019 02:01 AM

We have a PIX with 3 interface, 1. Inside, 2. Outside, 3. DMZ.

In the DMZ there is a VPN Concentrator which has a site-to-site VPN with another site. How should I write the nat statements so that all VPN traffic is not natted, but everything else is.

The problem is I have written the ACL, but cannot no nat or NAT0 the ACL because some addresses in it need to be natted.

Labels:
0 Helpful
1 Reply 1

mgaysek
Level 1
Level 1

‎11-28-2006 09:25 AM

Base your no-nat acl on source and destination. This way if the traffic does not match that rule it will be nat'd.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card