[c-nsp] Crazy NAT

Everton Diniz notrevebr at gmail.com
Thu Jun 19 17:48:51 EDT 2008 

Yes,
I have statics entries for nat.

ip nat inside source static 10.180.26.153 10.180.20.153
ip nat inside source static 10.180.52.70 172.30.170.201 extendable
ip nat inside source static 10.180.52.71 172.30.170.202 extendable
ip nat inside source static 10.180.53.70 172.30.170.203 extendable
ip nat inside source static 10.180.53.71 172.30.170.204 extendable
ip nat inside source static 10.180.54.70 172.30.170.205 extendable
ip nat inside source static 10.180.54.71 172.30.170.206 extendable
ip nat inside source static 10.180.57.70 172.30.170.207 extendable
ip nat inside source static 10.180.57.71 172.30.170.208 extendable
ip nat inside source static 10.180.57.73 172.30.170.209 extendable
ip nat inside source static 10.180.57.74 172.30.170.210 extendable
ip nat inside source static 10.180.56.70 172.30.170.211 extendable
ip nat inside source static 10.180.56.71 172.30.170.212 extendable
ip nat inside source static 10.1.1.210 172.30.170.221 extendable
ip nat inside source static 10.1.1.211 172.30.170.222 extendable

On 6/19/08, Wink <dwinkworth at wi.rr.com> wrote:
> Are there other NAT statements in your config?
>
> Everton Diniz wrote:
> >
> > Hi,
> >
> > I have a crazy router that do Nat for a deny entry on ACL. Whyyyy???
> >
> >
> > ip nat pool nat-pool 10.250.63.2 10.250.63.254 netmask 255.255.255.0
> > ip nat inside source list permit-nat pool nat-pool
> > Extended IP access list permit-nat
> >    10 deny ip host 10.180.20.70 host 10.180.50.201 log
> >    20 deny ip host 10.180.20.96 host 10.180.50.201 log
> >    30 deny ip host 10.180.20.159 host 10.180.50.201 log
> >    40 deny ip 10.180.0.0 0.0.255.255 host 10.180.50.201 log (242 matches)
> >    50 permit ip 10.180.0.0 0.0.255.255 10.252.0.0 0.1.255.255 log
> >    60 deny ip any any log (108 matches)
> >
> > tcp 10.250.63.14:2984 10.180.20.70:2984 10.180.50.201:8080
> 10.180.50.201:8080
> >
> > Version 12.3(8)T5
> >
> > Anyone has the same problem?
> >
> > Regards,
> > Everton
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
> >
> >
> >
>

More information about the cisco-nsp mailing list