[c-nsp] NAT Question
Gert Doering
gert at greenie.muc.de
Fri Jun 29 11:29:04 EDT 2007
Hi,
On Sat, Jun 30, 2007 at 12:26:45AM +0930, Tom Storey wrote:
> IIRC NAT occurs after routing, therefore it traffic is simply routed between
> inside interfaces, it should never be NATed.
Specifically, inside-to-outside NAT occurs if and only if (!) the
packet comes in from an "ip nat inside" interface and leaves via an
"ip nat outside" interace.
Which is why you can do cool tricks with "bounce over loopback" :) (even
if half of them woulnd't be necessary if static NAT mappings could take
an ACL for "only for *these* destinations, please!").
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the cisco-nsp
mailing list