Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

zone based firewall and Nat

hi, if I configure a zone based firewall policy to block private ip address ranges from leaking out of our routers public interface does the router evaluate the rule before or after Nat? I.e. Will I stop my own legitimate internal traffic from accessing the internet?

​thanks for any help

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Hi,Can you share the policy

Hi,

Can you share the policy that you have configured on the router ? Yes , the router will check the NAT statement before the ZBF policy.

Thanks and Regards,

Vibhor Amrodia

1 REPLY
Cisco Employee

Hi,Can you share the policy

Hi,

Can you share the policy that you have configured on the router ? Yes , the router will check the NAT statement before the ZBF policy.

Thanks and Regards,

Vibhor Amrodia

83
Views
0
Helpful
1
Replies
CreatePlease login to create content