Hi, using an ACL with NAT exemption, I'd like to have the following:
Traffic from 10.10.10.0 /24 bypass NAT exemption and allowed to be NATd
Any other 10.10.0.0 /16 traffic, don't NAT it.
My thoughts are this can be done using the following commands:
nat (inside) 0 access-list nonat
access-list nonat deny ip 10.10.10.0 255.255.255.0 any
access-list nonat permit 10.10.0.0 255.255.0.0 any
With the deny statement effectively defining traffic which I want to be exempt from NAT examption?
Then have a NAT ACL statement for whatever I want to NAT the 10.10.10.0 /24 traffic to.
Thanks,
Charles