cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
461
Views
0
Helpful
6
Replies

NAT on a stick perhaps?

nhon.yeung
Level 1
Level 1

Hi all

I've got a requirement where hosts on the

same segment must talk to other hosts on the same segment via another address.

source ip 10.200.1.1 dest ip 10.100.1.2 but dest is really 10.200.1.2.

This is for DR as the hosts are replicas of production but with different ip addresses with the same application configurations. I tried to create a loopback address and designate that as the outside interface for nat and the LAN interface as the inside. I then added a static nat for the translation and a static route to point 10.100.1.2 to the loopback. I'm wondering if this approach would work.

Thanks in advance

1 Accepted Solution

Accepted Solutions

paolo bevilacqua
Hall of Fame
Hall of Fame

Hi,

this would be your configuration example:

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml

Hope this helps, please rate post if it does!

View solution in original post

6 Replies 6

u0087672js
Level 1
Level 1

Maybe try putting a secondary IP address in the 10.200.1.0 range on the interface that the 10.200.1.2 device connects to.

paolo bevilacqua
Hall of Fame
Hall of Fame

Hi,

this would be your configuration example:

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml

Hope this helps, please rate post if it does!

Thanks.. i found this as well, initially i wanted to avoid using pbr but it looks like i have to, either that or use a dedicated nat router.

I spoke too soon.. i think i'm getting myself confused.. this is what i want

NAT: s: 10.200.1.1, d:10.100.1.1 -> 10.200.1.2

i'm not too if this can be done with PBR or NAT on a stick. i believe i'll need to NAT for both the source and destination otherwise i'll get duplicate ip issues.

Is that ur application want the packet for 10.100.1.1to be diverted to host 10.200.1.2 on the the segment??

if so,i dont know if the following solution a blunder,since i am assuming your senario,

Instead of nat,Create an static arp entry for 10.100.1.1 with mac of 10.200.1.2 ,so that the frame diverted towards device with ip 10.200.1.2.

and that device should be configured with secondary address 10.100.1.1.

yep that's what i want to do,

the problem is that the host can't take secondary address.. this was my first option.

anyway is there a way i can do a source and destination nat along with pbr to do this?

so s:10.200.1.1 ->192.168.1.1, d: 10.100.1.1 ->10.200.1.2

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: