Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
256
Views
0
Helpful
1
Replies

NAT Pools and Access-lists...

rvaccare
Level 1
Level 1

‎04-07-2004 08:36 AM - edited ‎03-02-2019 02:52 PM

I have the following situation that I cannot make heads or tails of...

ip nat pool XYZ 10.1.0.50 10.16.0.200 netmask 255.255.240.0

ip nat inside source list 1 pool XYZ

access-list 1 permit ip 10.0.0.0 0.255.255.255 192.168.1.0 0.0.0.255

access-list 1 permit ip 10.0.0.0 0.255.255.255 192.168.100.0 0.0.0.255

access-list 1 permit 192.168.161.0 0.255.255.255 192.168.100.0 0.0.0.255

access-list 1 permit 192.168.161.0 0.255.255.255 192.168.1.0 0.0.0.255

....

....

My problem is understanding what the second subnets in the access-list entries signify. I have only seen NAT access-lists with ONE subnet for each entry. Any help is appreciated. Thanks.

Labels:
0 Helpful
1 Reply 1

rdeguzman75
Level 1
Level 1

‎04-07-2004 12:35 PM

not sure where you got this config from but

access-list 1 : implies that this is a basic ip access-list. These types can accept only source addresses, not source and destination as this config implies. That would require extended access lists.

ie. format should be:

access-list 1 permit ip 10.0.0.0 0.255.255.255

or something like this.

0 Helpful
Customers Also Viewed These Support Documents