I have not used NAT on Cisco routers for a while (last time was on IOS 12.1), and I noticed that the command above (ip virtual-reassembly) is enabled by default when NAT is configured on an interface (starting from 12.3 something).
My question is: is it safe to remove this command from NAT-enabled interface? Reason being, we believe that this command is the root cause of several weird issues we've been experiencing. One of which was on ISDN BRI S/T interface. It appeared that any packets less than 500 bytes in size are dropped when this command is enabled.
OK. So, are you saying that removing the command will not stop NAT operation? Based on what I've read, this command appears to be a "safety measure" against some attacks, and that it does not really actively participate in NAT-ing operation. Can you confirm this?
Although this command may not cause issues in your experience, specifically on our customer's network, we've seen evidence that this may cause some problems. May not be the command, per se. Could be IOS bug.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...