- nat 0 access-list (nat-exempt)
- match against existing xlates
- static
i) static nat with and without access-list (first match)
ii) static pat with and without access-list (first match) - nat
a) nat access-list (first match)
Note: nat 0 access-list is not part of this command.
b) nat (best match)
Note:When matching nat, oldest nat configured will be matched first.
When choosing a global address from multiple pools with the same nat id, the following order is tried
i) if the id is 0, create an identity xlate.
ii) use the global pool for dynamic NAT
iii) use the global pool for dynamic PAT - Error
15 May 2011
ASA NAT: Order of Operations
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment