Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Question on best practice for NAT/PAT and client access to firewall IP

Imagine that I have this scenario:

Client(IP=[CiscoL2 switch]--Router--CiscoL2Switch----F5 Firewall IP= (only one NIC, there is not outbound and inbound NIC configuration on this F5 firewall)

One of my users is complaining about the following:

When clients receive traffic from the F5 firewall (apparently the firewall is doing PAT not NAT, the client see IP address

Do you see this is a problem? Should I make another IP address range available and do NAT properly so that clients will not see the firewall IP address? I don't see this situation is a problem but please let me know if I am wrong.