Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
881
Views
0
Helpful
1
Replies

multiple nat/pat statements - algorithm...

pavlosd
Level 2
Level 2

‎02-05-2010 02:01 AM - edited ‎03-11-2019 10:05 AM

I was trying to find the logic (algorith) of how NAT / PAT staements are assigned by PIX.....

For example:

nat (inside) 10 10.0.0.0 255.0.0.0

global (outside) 10 1.1.1.1- 1.1.1.10 netmask 255.255.255.255

global (outside) 10 1.1.1.11 netmask 255.255.255.255

global (outside) 10 1.1.1.12 netmask 255.255.255.255

global (outside) 10 1.1.1.13 netmask 255.255.255.255

According to the ardicle below, it should exsaust first all nat address and then pat.

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/gh_72.html#wp1688051

but what about when multiple PATs are defined?

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎02-11-2010 08:56 PM

Only when the PAT ports of the first PAT ip are filled is the ASA going to use the second PAT address.

I hope it helps.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card