sundar.palaniappan Thu, 05/03/2007 - 13:48
User Badges:
  • Green, 3000 points or more

Yes, NAT is supported if you have Sup720 or later versions of Supervisor card in use.


http://www.cisco.com/en/US/products/hw/switches/ps708/products_qanda_item09186a0080159963.shtml


http://www.cisco.com/en/US/products/hw/modules/ps2797/products_qanda_item0900aecd80350bfc.shtml


It appears the MSFC2 and MSFC does support NAT but NATting is done in software and that's something you might want to take into account.


HTH


Sundar

mohammedmahmoud Thu, 05/03/2007 - 13:55
User Badges:
  • Green, 3000 points or more

Hi,


To add more ,sometimes NAT is performed in HW and sometimes it is performed in SW.


1.Software performs the NAT function on the Catalyst 6500/6000 with a Supervisor Engine 1/2 and MSFC/MSFC2. There is no support in the hardware path.

2.When you use the NAT router feature on a Catalyst 6500 with Supervisor Engine 1/2 and MSFC/MSFC2, packets that traverse the NAT outside interface can (in certain configurations) undergo software routing instead of Layer 3 (L3) switching. The software routing can occur regardless of whether the packets require translation. For packets that traverse the NAT outside interface, the redirection to MSFC for software routing should occur for only those packets that require NAT. Cisco IOS Software only translates traffic that traverses from NAT inside interfaces to NAT outside interfaces. Create the access control list (ACL) for use with NAT to be more specific. Have the ACL limit the software-handled packets to only those packets that require NAT translation. For example, if you use a general ACL, such as permit ip any any, to specify the traffic that requires NAT, all traffic inbound or outbound on the NAT outside interface is software routed. Traffic that does not originate in the NAT inside interfaces or have the NAT inside interfaces as a destination is also software routed. If you use a more specific ACL, such as permit ip 192.168.1.0 0.0.0.255 any, only the NAT outside traffic that matches the ACL is software routed.

3.The NAT function is performed in hardware for unicast packets on a Catalyst 6500 with Supervisor Engine 720 and MSFC3 when you run Cisco IOS Software Release 12.2(14)SX or later.




HTH, please rate if it does help,

Mohammed Mahmoud.

Actions

This Discussion