From: Scott Morris (swm@emanon.com)
Date: Fri Aug 01 2003 - 11:51:49 GMT-3
When defining Ips out of a pool, the existing NAT table is always
checked before just picking another IP. If you set one with a static,
it will already exist in the NAT table and therefore not be assigned to
a station from the pool.
As for the PIX's outside (I'm assuming this is what you mean by wan
port) interface, yes absolutely, but only in an overload (PAT) scenario.
Otherwise, too much confusion is caused!
Use the global statement with 'interface overload' instead of specifying
an IP address.
Scott
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
tom young
Sent: Friday, August 01, 2003 3:42 AM
To: security@groupstudy.com
Cc: ccielab@groupstudy.com
Subject: PIX's nat address
Hi, group
Two question about using nat on PIX,
1, If I difine a IP pool for dynamic nat translation, may
I use one IP of the pool to set the static nat translation
?
2, May I use the PIX's wan port address for PAT
translation ?
Thanks alot
This archive was generated by hypermail 2.1.4 : Tue Sep 02 2003 - 18:53:51 GMT-3