[c-nsp] PIX order of operations
Peder at NetworkOblivion
peder at networkoblivion.com
Wed Oct 26 22:15:01 EDT 2005
Depends on the direction and type of traffic.
Assuming a NAT from inside to outside and an access-list on the inside
interface: the acl comes first and then the nat.
Same asumptions as above but using a vpn tunnel as well: inside acl,
nat, vpn acl.
Assuming a NAT from inside to outside and an access-list on the outside
interface for inbound traffic from the net: outside acl and then (de)NAT.
Voll, Scott wrote:
> Can someone remind me what comes first NAT or ACL when it comes to order
> of operations on a PIX.
>
> TIA
>
> Scott
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
--
Network stuff you didn't know....
http://www.networkoblivion.com
More information about the cisco-nsp
mailing list