correct me if I am wrong, the access-list is process before the NAT.
The subinterface is the outside (ip nat outside) and the direction of the access-list is 'in'. Meaning all traffic that is being block by the ACL is the traffic coming into the interface going to the router. Since the interface is the outside, before the packets goes out of the interface, the Source address (SA) is translated by the router, therefore the return packet should have the translated IP address as the destination address. If the traffic is initiated from the outside, the DA should the translated address and the access-list should take effect first to filter the translated IP address
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...