[c-nsp] Crazy NAT
Wink
dwinkworth at wi.rr.com
Thu Jun 19 17:43:15 EDT 2008
Are there other NAT statements in your config?
Everton Diniz wrote:
> Hi,
>
> I have a crazy router that do Nat for a deny entry on ACL. Whyyyy???
>
>
> ip nat pool nat-pool 10.250.63.2 10.250.63.254 netmask 255.255.255.0
> ip nat inside source list permit-nat pool nat-pool
> Extended IP access list permit-nat
> 10 deny ip host 10.180.20.70 host 10.180.50.201 log
> 20 deny ip host 10.180.20.96 host 10.180.50.201 log
> 30 deny ip host 10.180.20.159 host 10.180.50.201 log
> 40 deny ip 10.180.0.0 0.0.255.255 host 10.180.50.201 log (242 matches)
> 50 permit ip 10.180.0.0 0.0.255.255 10.252.0.0 0.1.255.255 log
> 60 deny ip any any log (108 matches)
>
> tcp 10.250.63.14:2984 10.180.20.70:2984 10.180.50.201:8080 10.180.50.201:8080
>
> Version 12.3(8)T5
>
> Anyone has the same problem?
>
> Regards,
> Everton
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
>
More information about the cisco-nsp
mailing list