NAT on a stick perhaps?

Answered Question
Nov 27th, 2007

Hi all

I've got a requirement where hosts on the

same segment must talk to other hosts on the same segment via another address.

source ip 10.200.1.1 dest ip 10.100.1.2 but dest is really 10.200.1.2.

This is for DR as the hosts are replicas of production but with different ip addresses with the same application configurations. I tried to create a loopback address and designate that as the outside interface for nat and the LAN interface as the inside. I then added a static nat for the translation and a static route to point 10.100.1.2 to the loopback. I'm wondering if this approach would work.

Thanks in advance

I have this problem too.
0 votes
Correct Answer by Paolo Bevilacqua about 9 years 1 week ago

Hi,

this would be your configuration example:

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml

Hope this helps, please rate post if it does!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
u0087672js Thu, 11/29/2007 - 13:26

Maybe try putting a secondary IP address in the 10.200.1.0 range on the interface that the 10.200.1.2 device connects to.

nhon.yeung Thu, 11/29/2007 - 17:54

Thanks.. i found this as well, initially i wanted to avoid using pbr but it looks like i have to, either that or use a dedicated nat router.

nhon.yeung Thu, 11/29/2007 - 19:09

I spoke too soon.. i think i'm getting myself confused.. this is what i want

NAT: s: 10.200.1.1, d:10.100.1.1 -> 10.200.1.2

i'm not too if this can be done with PBR or NAT on a stick. i believe i'll need to NAT for both the source and destination otherwise i'll get duplicate ip issues.

s.arunkumar Thu, 11/29/2007 - 20:20

Is that ur application want the packet for 10.100.1.1to be diverted to host 10.200.1.2 on the the segment??

if so,i dont know if the following solution a blunder,since i am assuming your senario,

Instead of nat,Create an static arp entry for 10.100.1.1 with mac of 10.200.1.2 ,so that the frame diverted towards device with ip 10.200.1.2.

and that device should be configured with secondary address 10.100.1.1.

nhon.yeung Thu, 11/29/2007 - 21:03

yep that's what i want to do,

the problem is that the host can't take secondary address.. this was my first option.

anyway is there a way i can do a source and destination nat along with pbr to do this?

so s:10.200.1.1 ->192.168.1.1, d: 10.100.1.1 ->10.200.1.2

Actions

This Discussion