前言:
现在各位老铁们对“objectnetworknat”大概比较注重,小伙伴们都想要学习一些“objectnetworknat”的相关文章。那么小编也在网络上汇集了一些对于“objectnetworknat””的相关资讯,希望同学们能喜欢,看官们一起来学习一下吧!ciscoasa# packet-tracer input inside tcp 172.16.1.1 telnet 202.100.1.1 telnet //模拟inside接口进来的地址172.16.1.1 telnet到outside接口的下一跳202.100.1.1
Phase: 1
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
MAC Access list
Phase: 2 //查找到达202.100.1.0的路由
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 202.100.1.0 255.255.255.0 outside
Phase: 3
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Phase: 4 //做nat 转换 把172.16.1.1 23号端口转换成202.100.1.10的357端口
Type: NAT
Subtype:
Result: ALLOW
Config:
object network inside2outside
nat (inside,outside) dynamic interface
Additional Information:
Dynamic translate 172.16.1.1/23 to 202.100.1.10/357
Phase: 5
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Phase: 6
Type: FLOW-CREATION
Subtype:
Result: ALLOW
Config:
Additional Information:
New flow created with id 7, packet dispatched to next module
Result: // 最终结果是allow
input-interface: inside
input-status: up
input-line-status: up
output-interface: outside
output-status: up
output-line-status: up
Action: allow
标签: #objectnetworknat
