Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Multiple nat 0 statements

Hi,

I would like to know if I can use multiple NAT 0 statements for the same interface e.g inside interface.

Presently I am already using a nat (inside) 0 statement with an access list. Now I want to implement a site to site vpn. So I want the new access-list also not to be natted for the vpn traffic.

Please let me know.

Thanks.

5 REPLIES
Silver

Re: Multiple nat 0 statements

You can have as many as you like. You can mix and match nat 0 access-list and nat 0 ip.address.block.here subnet.mask.goes.here style statements as well

nat 0 access-list is a true nat exemption, and is probably the best practice. Its probably cleanest to maintain one access-list for use for one nat 0 command statement

New Member

Re: Multiple nat 0 statements

Thanks !

Just wanted to confirm.if the following will work ?

nat (inside) 0 access-list 100

nat (inside) 0 access-list 110

nat (inside) 0 access-list 120

Regards,

Silver

Re: Multiple nat 0 statements

nope, i just tested it. you can only have one nat 0 access-list statement.

New Member

Re: Multiple nat 0 statements

Is there any workaround for this ?

Regards

Silver

Re: Multiple nat 0 statements

write a new accesslist that combines all of the entries you wish to have nat 0 apply to

114
Views
0
Helpful
5
Replies
CreatePlease to create content