Jon:

This is my config in 2801 router.

ip nat pool P128-4 172.18.220.1 172.18.223.254 netmask 255.255.252.0

ip nat pool epotor 172.18.251.230 172.18.251.230 netmask 255.255.255.0

ip nat inside source list 19 pool P128-4

ip nat inside source route-map epotor pool epotor overload

access-list 120 permit ip 128.0.0.0 0.255.255.255 host 10.0.34.222

access-list 120 permit ip 129.0.0.0 0.255.255.255 host 10.0.34.222

route-map epotor permit 10

match ip address 120

!

access-list 19 permit any

For historical reasons we still have addressing 128.X.X.X and 129.X.X.X in our network, when we connect to a external entity we do NAT, our pool is 2000 address. Because of a lot of connections (antivirus) to a server those connections are fulling the pool, so I decided to configure a PAT to that specific destination address 10.0.34.222 but it is not working. the pool server get full because PAT doesn't match, when I remove the dynamic pool it works.

The same configuration works at the same time in a 7200 that we used before to the link to that entity.

Please, let me know your comments.

Could you try changing the following

access-list 19 permit any

to

access-list 101 deny ip 128.0.0.0 0.255.255.255 host 10.0.34.222

access-list 101 deny ip 129.0.0.0 0.255.255.255 host 10.0.34.222

access-list 101 permit ip any any

ip nat inside source list 101 pool P128-4

I think the problem is because you have a permit any in access-list 19 it never gets to look at the route-map NAT.

Not sure why this worked on a 7200 - maybe to do with order commands are entered. Would need to test and don't have access to 7200 or 2800 at the moment.

Could you try the modifications and let me know how you get on.

Jon