Question on show local

[magicomm]

Hi, I'm seeing something strange when I do a show local from my PIX515e 6.3(3), the NAT translation from my private IP was showing an in-direct mapping of two public IPs, I have a pool of 128 public IPs for NAT.
Here is the output from my show local:
Global 66.120.a.b Local 192.168.1.53
Global 66.120.c.d Local 66.120.a.b

My question is why this in-direct mapping, it seemed to me it's wasting an public IP for no good reason. Is this how Cisco PIX supposed to behave or it's the configuration I did that cause it to do this. Everything else seemed to work fine with my PIX.

Thanks in advance....

 

[themut]

You may have a loop in your network and I suspect your nat command is as follows:

nat (inside) 1 0.0.0.0 0.0.0.0

So if you have a loop in your network, the global IP address is feed back in to the inside, and because your "nat (inside)..." command is set to everything, and the PIX is translating this feeded global IP address. Determine what may be causing the loop in your network and also configure the nat command so that it only includes the internal networks.

 

[magicomm]

Thanks a lot for pointing out the loop. After removing nat (inside) 0.0.0.0 0.0.0.0 and including only the internal network, this fixed the problem.