Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
421
Views
0
Helpful
1
Replies

using nql...

Go to solution
gpangallo
Level 1
Level 1

‎03-17-2008 06:06 AM

Hi,

I have to configure two CSS11503 to forward the connection request from two servers to CPEs. The problem is that the CPEs are in various subnets.

Now, I think that I can't use the service and the group command but the nql command.

Could anyone tell me if that it's correct? If not, how can I configure that?

Thank you very much.

Best regards.

G.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎03-17-2008 06:49 AM

you can use group and service but in this case the CSS will nat all traffic from the services, not just the traffic sent to the CPE.

If you want to limit nating to some destination only, you need to use acl.

NQL are not really necessary.

An ACL to achieve what you need will look like this :

acl 1

clause 10 permit any destination sourcegroup

clause 99 permit any any destination any

apply VLAN...

Match the source and destination for which you need nating and insert as many clauses as necessary.

Gilles.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎03-17-2008 06:49 AM

you can use group and service but in this case the CSS will nat all traffic from the services, not just the traffic sent to the CPE.

If you want to limit nating to some destination only, you need to use acl.

NQL are not really necessary.

An ACL to achieve what you need will look like this :

acl 1

clause 10 permit any destination sourcegroup

clause 99 permit any any destination any

apply VLAN...

Match the source and destination for which you need nating and insert as many clauses as necessary.

Gilles.

0 Helpful
Customers Also Viewed These Support Documents