Hi all
Thanksfor help.
There was rule with ICMP protocol and with removing this line it worked.
access-list zero_nat_acl extended permit icmp .....
Regards
On Tue, Jan 5, 2010 at 10:28 AM, Ryan West <rwest_at_zyedge.com> wrote:
> Sajjad,
>
> > -----Original Message-----
> > From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
> > karim jamali
> >
> >
> > Hi,
> >
> > I am not sure but I believe that the nat exemption access-list cannot
> > have
> > protocols or ports.
> >
> > I may be be wrong though.
> >
> > Best Regards,
> >
> > On Tue, Jan 5, 2010 at 8:31 AM, Sajjad Najafizadeh
> > <najafizadeh_at_gmail.com>wrote:
> >
> > > Hi
> > >
> > > I get error : ERROR: access-list has protocol or port when trying to
> > add
> > > exepmtion nat in ASA.
> > >
>
>
> Karim is correct, Policy NAT for NAT 0 does not consider ports:
>
>
> http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008046f31a.shtml#t10
>
> -ryan
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Tue Jan 05 2010 - 10:39:48 ART
This archive was generated by hypermail 2.2.0 : Thu Feb 04 2010 - 20:28:41 ART