Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
701
Views
0
Helpful
10
Replies

Mixed NAT

apaladi
Level 1
Level 1

‎04-26-2007 12:26 AM - edited ‎03-03-2019 04:43 PM

I have a 2801 router with 3 interfaces: A, B and C.

There are two subnets behind interface B: suppose we name them subnet B0 and B1.

I need to do policy NAT from int A to B (only for traffic going to B0). And I need to do policy NAT from int B to C (only for traffic coming from B1).

Is this possible to do on a single router ? and what is the approximate way to do it ?

Thanks.

Labels:
0 Helpful
10 Replies 10

spremkumar
Level 9
Level 9

‎04-26-2007 12:43 AM

Hi

Small piece of a network/topology diagram will help here to understand the network/requirement..

regds

0 Helpful

apaladi
Level 1
Level 1
In response to spremkumar

‎04-26-2007 01:12 AM

Please see below, let me know if it's still not clear. Thanks.

0 Helpful

mohammedmahmoud
Level 11
Level 11

‎04-26-2007 12:47 AM

Hi there,

I think that you can do it with something like this, but how do you have 2 subnets behind 1 interface (B):

ip nat pool x.x.x.x x.x.x.x prefix-length y

ip nat inside source route-map b0 pool overload

access-list 1 permit

route-map b0 permit 10

match ip address 1

match interface

HTH, please rate if it does,

Mohammed Mahmoud.

0 Helpful

apaladi
Level 1
Level 1
In response to mohammedmahmoud

‎04-26-2007 01:09 AM

Thanks for your reply, Mohammed.

I believe this configuration takes care only of the traffic flowing from B0. I need traffic to B1 to be translated on interface B at the same time.

0 Helpful

mohammedmahmoud
Level 11
Level 11
In response to apaladi

‎04-26-2007 01:17 AM

Hi there,

You can use the same thing with the traffic of B1, according to the match of the route-map the traffic will be NATed:

ip nat pool w.w.w.w w.w.w.w prefix-length y

ip nat inside source route-map b1 pool overload

access-list 2 permit

route-map b1 permit 10

match ip address 2

match interface

HTH,

Mohammed Mahmoud.

0 Helpful

apaladi
Level 1
Level 1
In response to mohammedmahmoud

‎04-26-2007 01:36 AM

This is also clear, but how do I configure NAT on the interface B itself: "ip nat inside" or "ip nat outside" or "ip nat enable" ?

0 Helpful

mohammedmahmoud
Level 11
Level 11
In response to apaladi

‎04-26-2007 01:48 AM

Hi there,

Now i got you, change this statement:

ip nat outside source route-map b0 pool overload

instead of: ip nat inside source route-map b0 pool overload

and do "ip nat inside" for interface B, and "ip nat outside" for interface A and C.

HTH,

Mohammed Mahmoud.

0 Helpful

apaladi
Level 1
Level 1
In response to mohammedmahmoud

‎04-26-2007 08:06 PM

Mohammed, thanks for your reply.

I cannot use IP pools, I need port overloading (NAPT) on each interface. When using "ip nat outside" it only allows you to use an ip pool.

Please see the drawing below. Each line represents the traffic flow, and the arrow represents the interface where each flow should be NATed.

Let me know if you have other ideas.

Thanks again.

0 Helpful

apaladi
Level 1
Level 1

‎04-26-2007 01:00 AM

As requested, I attach a sketch outlining the layout. As you see, the problem lies on interface B, where I need to do "NAT inside" for B1 subnet, and "NAT outside" for traffic to B0 hosts.

0 Helpful

apaladi
Level 1
Level 1

‎04-26-2007 01:05 AM

Network/traffic layout

Preview file
18 KB
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card