Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX - outbound static NAT after upgrade to 7.2

Hello,

Having issues after PIX 7.2 upgrade from 6.3

I have an outbound (secure to less secure) destination static NAT in place, which works fine, but because of this NAT, I can no longer route through using real-IP destination address.

EX.

static (outside,inside) 10.1.1.1 192.168.1.1 netmask 255.255.255.255

accesss-list no-nat permit ip 172.16.1.0 255.255.255.0 any

nat (inside) 0 access-list no-nat

so if I'm sourcing from 172.16.1.0 destin for 10.1.1.1, it works fine, NATting destination to 192.168.1.1

but if I'm sourcing from 172.16.1.0 destin for real IP 192.168.1.1, this no longer works.

any ideas?

  • Firewalling
1 REPLY
New Member

Re: PIX - outbound static NAT after upgrade to 7.2

Downgrade to 7.02, I bet it works then.

I have had loads of issues with 7.2, the worst being incoming email appears to work, unless multiple emails are sent from, beleive it or not Cisco, Microsoft etc.

The ASA blocks them, even wit a permit all access-list.

104
Views
0
Helpful
1
Replies
This widget could not be displayed.