nat and firewall

unknown

Can the firewall on the router prevent nat from translating an address all on the same router.

Find more posts tagged with

Save $250 on 2025 certification boot camps from Infosec!

Book now with code EOY2025

Button

Comments

xXErebuS

dmarcisco wrote: »

Can the firewall on the router prevent nat from translating an address all on the same router.

Could you clarify? Are you saying you have a pool of addresses (192.168.1.0/24) that need translated to your public addresses (X.X.X.X/X) and you want to prevent host 192.168.1.24 from being translated?

If so yes; its called NAT EXEMPTION but there are specific order of operations of which supercedes the other and is typically vendor / model specific.

mapletune

In a nutshell, input access list is always checked first, then NAT, then output access list.

Here's more information for your reference:
NAT Order of Operation - Cisco Systems

Quick Links

All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of