Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

PIX NAT

We have a PIX with 3 interface, 1. Inside, 2. Outside, 3. DMZ.

In the DMZ there is a VPN Concentrator which has a site-to-site VPN with another site. How should I write the nat statements so that all VPN traffic is not natted, but everything else is.

The problem is I have written the ACL, but cannot no nat or NAT0 the ACL because some addresses in it need to be natted.

1 REPLY
Community Member

Re: PIX NAT

Base your no-nat acl on source and destination. This way if the traffic does not match that rule it will be nat'd.

217
Views
0
Helpful
1
Replies
CreatePlease to create content