(In the case of PAT, this is one address.)
Each nat command matches a global command by matching the corresponding NAT ID, a number that is
assigned in each command. NAT ID ties the nat and the global commands together. Refer back to Figure 6-10
and Figure 6-11 for demonstration examples.
When using multiple interfaces, the NAT ID can be used to tie multiple NAT rules together. For example, NAT ID
1 can be used to configure nat for Inside and DMZ interfaces. The same ID 1 can then be used to configure the
global command on the outside interface. Traffic from the inside interface and the DMZ interface share a
mapped pool or a PAT address when exiting the outside interface. Example 6-14 illustrates this scenario.
Example 6-14. Configuring the Same NAT ID for the Inside and DMZ Interface
hostname(config)# nat (inside) 1 10.1.1.0 255.255.255.0
hostname(config)# nat (dmz) 1 10.2.2.0 255.255.255.0
hostname(config)# global (outside) 1 209.165.201.3-209.165.201.10
The NAT ID can also be used to reference multiple global commands for exiting interfaces. For example, NAT ID
1 can be used for the global command on Outside and DMZ interfaces, and the same ID can be used for the
Inside nat command to identify the traffic to be translated when going to both Outside and DMZ interfaces.
Pages:
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301