Saturday, February 11, 2006


Non-NAT traffic on a NAT interface.

While reading through some Cisco newsgroups, I came across a question that was asking about traffic that enters an interface configured with "ip nat inside" that happens to not match any access lists that specify what traffic is to be NATed. Will those packets be dropped or would they forwarded as they are (without being NATed)?

Well, I tried it out in my lab and as one might expect they get forwarded without being NATed. This behavior does seem intuitive. The conclusion on the newsgroup thread was also the same and I just verified it for myself.

