Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > pix policy nat small oddity

Thread Tools

pix policy nat small oddity

Walter Roberson
Posts: n/a
This won't be of interest to very many people

For those of you who have programs that parse PIX syslog messages:

I happened to notice this morning that %PIX-6-305009
'built static translation' has a slightly different format when
policy static is being used:

Jul 12 08:46:35 6V:ibdhalpixX Jul 12 2005 08:45:11: %PIX-6-305009: Built static translation from inside: to outside(map10_acl):

The (map10_acl) part is the name of the ACL that was matched in
determining the translation. With non-policy translations, there would
be nothing between the interface name and the : followed by the
translated IP.

I don't know yet whether the corresponding translation destroyed message
will mention the ACL.

This will complicate parsing a bit, as '(' and ')' are legal characters
in interface names (as is ':')
Ceci, ce n'est pas une idée.
Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
policy nat and static NAt wtpandar Cisco 0 09-12-2006 01:53 AM
PIX Policy-NAT mcaissie Cisco 0 10-17-2005 02:50 PM
PIX question Policy NAT - quite urgent - AM Cisco 4 03-15-2005 08:42 AM
Pix, policy NAT and VPN Jyri Korhonen Cisco 7 10-26-2004 06:42 PM
PIX Policy NAT: order of NAT commands Oleg Tipisov Cisco 4 08-13-2004 07:13 PM