[c-nsp] remove PAT command from FWSM configure

zhangyongshun zhangyongshun1986 at gmail.com
Wed Aug 29 04:42:59 EDT 2012


于 2012/8/26 23:43, Peter Rathlev 写道:
> On Sun, 2012-08-26 at 17:42 +0800, zhangyongshun wrote:
>> hi,everybody:
>> I have add two line command for my FWSW PAT configure.
>> nat (inside) 100 129.1.1.0 255.255.255.0
>> global (outside) 100 122.226.204.41
>>
>> but,now i can't remove this command from FWSW running-configure.
> ...
>> JH-DYGS-FWSM(config)# no nat (inside) 100 ?
>>
>> configure mode commands/options:
>> access-list Specify access-list name after this keyword
>> FWSM(config)#
> Just ignore the "?"-hints and issue
>
>   no nat (inside) 100 129.1.1.0 255.255.255.0
>
> Works fine for me.
Yes,It works fine.
>
>> another question:
>> nat (inside) 18 0.0.0.0 0.0.0.0
>> if this commmand match any real inside network traffic?
> That would depend on the definition of "any real inside network
> traffic". The NAT statements matches all IPv4 traffic that is not
> matched by something more specific, like narrower NAT statements or
> statics.
>
I want to make sure if this ACL match any outbound traffic from inside 
interface.


More information about the cisco-nsp mailing list