From: Berry Mobley (MobleyB@bellsouth.net)
Date: Mon Mar 29 2004 - 11:54:44 GMT-3
Yes - you're going to at least have to NAT 0 on each interface that will be
sending traffic out to a lower security interface.
Berry
At 09:50 AM 3/29/2004, you wrote:
>All,
>
>I have a pix running 6.3 ios and three interfaces (inside,outside and dmz).
>I am NOT using nat as all nodes and pix interfaces have a valid public ip
>assigned to them. My question is..do I still need to issue the commands
>"nat (inside) 0 0 0" and "nat (dmz) 0 0 0" in order for traffic to be passed
>between interfaces? In the nat command..I used 0 for the nat id to disable
>nat.
>
>I'm just not clear on whether I have to issue the nat command to get traffic
>moving, even though I'm not using nat at all.
>
>Thx in advance.
>
>kevin
>
>_______________________________________________________________________
>Please help support GroupStudy by purchasing your study materials from:
>http://shop.groupstudy.com
>
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Thu Apr 01 2004 - 08:15:49 GMT-3