Hi,
On Sat, Jun 30, 2007 at 12:26:45AM +0930, Tom Storey wrote:
> IIRC NAT occurs after routing, therefore it traffic is simply routed between
> inside interfaces, it should never be NATed.
Specifically, inside-to-outside NAT occurs if and only if (!) the
packet comes in from an "ip nat inside" interface and leaves via an
"ip nat outside" interace.
Which is why you can do cool tricks with "bounce over loopback" :) (even
if half of them woulnd't be necessary if static NAT mappings could take
an ACL for "only for *these* destinations, please!").
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [EMAIL PROTECTED]
fax: +49-89-35655025 [EMAIL PROTECTED]
_______________________________________________
cisco-nsp mailing list [email protected]
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
