NAT configuration problem on cat6500 - Cisco Community

134

Views

0

Helpful

1

Replies

Hi expert

I have tried to configure nat for a subnet, and I can ping from external, but not get remote desktop work. my configure is below:

interface vlan 111

ip address 10.1.1.1 255.255.255.0

ip nat inside

if flow ingress

ip pim sparse-dense-mode

interface vlan 2

ip address xxx.xxx.2.1 255.255.255.0

ip nat outside

ip flow ingress

ip pim sparse-dense-mode

ip nat pool NatPool xxx.xxx.2.24 xxx.xxx.2.31 prefix-length 29

ip nat inside source list NatSub pool NatPool overload

ip access-list extended NatSub

permit ip 10.1.1.0 0.0.0.255 any

if I am in subnet 10.1.1.0/24 or other subent in cat6500, I can use remote desktop to acccess the machine by the private ip address,

but, if I am out to internet, and remote login using remote desktop connection by the public address, I can not get connection.

Could any one advice, what possible problem I may have?

Any comments will be appreciated

Thanks in advance

Julxu

1 Reply 1

Hi,

You have the prefix-length as 29 but the mask on the interface is /24 ( ip address xxx.xxx.2.1 255.255.255.0)

Can you change the prefix-length to 24 and test again?

HTH

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking products for a $25 gift card