Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-list with NAT

Dear all,

I have some problem with access-list with NAT. I have a E1/0(outside) to connect the ISP Router via RJ45 and have F0/1(inside) to connect my intranet. We use NAT function to do Network Address Translation in the Router. Right now, we want to use access-list to filter specific network segment could via NAT to access our intranet. There is my question. How could I use the access-list command to do this?

Paul

1 REPLY
Cisco Employee

Re: Access-list with NAT

Hello yinchin,

You can certainly do this.

Here is what you'll need to specify only some networks to be natted via an ACL.

ip nat pool name start-ip end-ip {netmask | prefix-length prefix-length}

access-list access-list-number permit source [source-wildcard]

ip nat inside source list access-list-number pool name overload

Of course, you'll still need to define "ip nat inside" and "ip nat outside" statements.

Take a look at

Configuring NAT for IP Address Conservation

http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a008044eddc.html#wp1047771

for complete configuration guidelines.

Hope this helps! If so, please rate.

Thanks

200
Views
0
Helpful
1
Replies
CreatePlease login to create content