Home > Archive > CCNP > August 2001 > Code upgrade pix 4.4 to 526





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Code upgrade pix 4.4 to 526
beenframed

2001-08-30, 4:32 pm

I just upgraded to 526. 4.4 does not let you have more then 2 interfaces I installed a 3rd today and needed to upgrade. After I upgraded I got the message below. I t was sitting at the top of the console screen right on top of the pix515> prompt


==============================
==============================
====================
nat 0 10.0.0.0 will be non-translated
.ERROR: entry for address/mask = 10.0.0.234/255.255.0.0 exists
ERROR: entry for address/mask = 10.0.0.234/255.255.0.0 exists
==============================
==============================
=======================
When I reloaded the pix the two ERROR: lines disappeared but I still saw the top line of:
==============================
==============================
========================
nat 0 10.0.0.0 will be non-translated
==============================
==============================
========================

Do you know what this means. I am not running NAT on the firewall that is done on a router outside of it.
MadChef

2001-08-31, 5:07 am

I would guess that it's just an informational message. Why they would feel the need to tell you that the 10.0.0.0 network won't be translated when you are the one who configured the nat 0 statement is anyone's guess.
If it's running fine I don't think I would worry about it.

MadChef
vr2zjw

2001-08-31, 7:01 am

It mean all traffic going from outside to 10.0.0.0 will not be translate. The problem is 10.0.0.0 is a private address space and no one should try to access it outside the firewall because it is not routable in the internet.

Would you mind post your configuration about the nat parts?
MadChef

2001-08-31, 7:11 am

quote:
Originally posted by vr2zjw
It mean all traffic going from outside to 10.0.0.0 will not be translate. The problem is 10.0.0.0 is a private address space and no one should try to access it outside the firewall because it is not routable in the internet.


If you look at the tail end of his post he mentions that he's doing NAT on a router on the outside of the Pix.

MadChef
beenframed

2001-08-31, 8:44 am

Yeah It's done on the outside router. I guess it's just saying that the pix is not doing any nating. That works for me.

Thanks,

Bf
Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2009 examnotes.net