Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

No-Nat

I have a doubt in PIX Firewall

Check this sample config:

------------------------

Nat (inside) 0 access-list test

Access-list test permit ip host 172.20.128.133 any

This mean the source 172.20.128.133 is allowed to access any destination without nat?

Whether we need to bind the same to the inside acl like:

# Access-list inside permit ip host 172.20.128.133 any

This is required ????

Kishore Kumar.B

2 REPLIES
Silver

Re: No-Nat

This does mean that. This host address will never be translated using this config. No other config is neccessary to make this happen. It also means that ALL other hosts MUST be translated thus without a static or global for it to use, no traffic will flow for other hosts.

pls rate post if helpful.

New Member

Re: No-Nat

Morris,

Thanks for your comment.

Whether i need to add the acl on the inside interface for the Nat 0 even if i have many other ACL's binded to the inside interface.

217
Views
0
Helpful
2
Replies