[c-nsp] remove PAT command from FWSM configure
Peter Rathlev
peter at rathlev.dk
Sun Aug 26 11:43:09 EDT 2012
On Sun, 2012-08-26 at 17:42 +0800, zhangyongshun wrote:
> hi,everybody:
> I have add two line command for my FWSW PAT configure.
> nat (inside) 100 129.1.1.0 255.255.255.0
> global (outside) 100 122.226.204.41
>
> but,now i can't remove this command from FWSW running-configure.
...
> JH-DYGS-FWSM(config)# no nat (inside) 100 ?
>
> configure mode commands/options:
> access-list Specify access-list name after this keyword
> FWSM(config)#
Just ignore the "?"-hints and issue
no nat (inside) 100 129.1.1.0 255.255.255.0
Works fine for me.
> another question:
> nat (inside) 18 0.0.0.0 0.0.0.0
> if this commmand match any real inside network traffic?
That would depend on the definition of "any real inside network
traffic". The NAT statements matches all IPv4 traffic that is not
matched by something more specific, like narrower NAT statements or
statics.
--
Peter
More information about the cisco-nsp
mailing list