Wednesday, May 13, 2009

Order Of Operation While Configuring CBAC & NAT Togather

While configuring CBAC and NAT on a router, the NAT order of operation plays an important role.

For inside-to-outside traffic, perform these steps:

  1. Check input ACL.
  2. Perform NAT inside to outside.
  3. Check output ACL.

For outside-to-inside traffic, perform these steps:

  1. Check input ACL.
  2. Perform NAT outside to inside.
  3. Check output ACL.

For filtering inside-to-outside traffic on the inside interface, the inside hosts should be specified by their actual IP addresses.

Similarly, for filtering outside-to-inside traffic on the outside interface, the inside hosts should be specified by their translated addresses (inside global).

Posted by at
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)