I never knew you could negate the whole rule. So if I wanted to do something like:
Search for an interface that contains ip nat outside, if so it must contain ip inspect FW in.
Im trying to negate the rule with two OR, 1st must not contain ip nat outside or encapsulation dot1q.
Only seems to work with or ip nat outside. IM getting caught on the encapsulation part as we have mpls interfaces that also have ip nat outside too but we dont use the inspect for these as they are mpls. The others are internet interfaces which we do. It doesnt like the 2nd OR for encapsulation but not too sure why.
