Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
772
Views
0
Helpful
2
Replies

ACE; Dynamic SNAT in bridge mode without Dnat (VIP) needed

Go to solution
loudo
Level 1
Level 1

‎02-20-2008 01:35 AM

Hi,

We are interested about the ACE NAT performance. We would like to use this module just for the SNAT feature and only in bridge mode (to facilitate the ACE integration in the current network).

the configuration could be similar to this one:

--

class-map PrivateSource

match source-address 10.0.0.0 255.0.0.0

policy-map multimatch SourceNat

class PrivateSource

nat dynamic 1 vlan X

interface vlan X (incoming traffic from the source)

bridge-group 1

service-policy in SourceNat

nat-pool 1 publicIP netmask A.B.C.D pat

interface vlan Y

bridge-group 1

--

Could anyone confirm if this feature is supported on the ACE and if the above configuration could be a good one?

--

Many thanks for your help.

Regards/Ludovic.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎02-20-2008 03:46 AM

Ludovic,

ACE does not NAT bridged traffic.

You could catch it with a catch-all-destination class-map

ie:

class-map all

match virtual 0.0.0.0 0.0.0.0 any

And use a transparent serverfarm sending all traffic to a unique default gateway.

That would work.

Gilles.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎02-20-2008 03:46 AM

Ludovic,

ACE does not NAT bridged traffic.

You could catch it with a catch-all-destination class-map

ie:

class-map all

match virtual 0.0.0.0 0.0.0.0 any

And use a transparent serverfarm sending all traffic to a unique default gateway.

That would work.

Gilles.

0 Helpful

Go to solution
loudo
Level 1
Level 1
In response to Gilles Dufour

‎02-20-2008 04:45 AM

Many thnaks Gilles, We will do as you suggested.

Regards/ludovic.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents