Unanswered Question
Aug 10th, 2007


can anybody please check this configuration out and verify that nat and PBR are properly configured?

also if the static entry

ip route FastEthernet0/0

is realy necessary...


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Fri, 08/10/2007 - 10:31


Your'e config looks okay although it's difficult to be certain it is doing what you want without more detail from you. Couple of things

1) The following 2 routes

ip route FastEthernet0/0

ip route FastEthernet0/1

Not sure why you need these as you have directly connected interfaces on the router for these networks.

2) Your NAT pools do not have enough addresses in them to cover the class C networks you are translating from. if there is a possibility the NAT pool may run out you may want to add the keyword "overload" to the end of your NAT statements.



bkoum Fri, 08/10/2007 - 11:14

hi Jon

im just trying to drive network

and throught out the router to the internet from the sw3550...

i wasnt sure if i should add static route entries about the and networks because i was confused about the nat order operation but seems that the router recognize only the original network when routing operates.

sundar.palaniappan Fri, 08/10/2007 - 13:10

With your current configuration the router wouldn't NAT the traffic from and network because of PBR. PBR operation takes precedence over anything else and therefore NAT will be bypassed completely in your setup. As such your inside addresses would show up on the 3550 switch on the outside network. Instead of PBR use static route(s) + NAT to accomplish this task.



bkoum Wed, 08/15/2007 - 01:10


is this true ? because the all routing proccess is precedence the NAT on the outgoing traffic ...

perhaps ill try both .


This Discussion