I was trying to find the logic (algorith) of how NAT / PAT staements are assigned by PIX.....
For example:
nat (inside) 10 10.0.0.0 255.0.0.0
global (outside) 10 1.1.1.1- 1.1.1.10 netmask 255.255.255.255
global (outside) 10 1.1.1.11 netmask 255.255.255.255
global (outside) 10 1.1.1.12 netmask 255.255.255.255
global (outside) 10 1.1.1.13 netmask 255.255.255.255
According to the ardicle below, it should exsaust first all nat address and then pat.
http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/gh_72.html#wp1688051
but what about when multiple PATs are defined?