Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

2 VLANs on 1 port

Is it possible to have 1 public VLAN and 1 private NAT'd VLAN on the same port on a 3925?

4 REPLIES
Hall of Fame Super Blue

Re: 2 VLANs on 1 port

Zach

Not sure what you mean.

If the port is a L2 port then make it a trunk link.

If the port is L3 simply use secondary addressing.

Jon

New Member

Re: 2 VLANs on 1 port

Maybe explaining what I would like to do will make it easier to understand what I am trying to accomplish : )

Currently have group of customer under a NAT (VLAN1) network on one LAN port of my router - private IP block (192.168.0.0/24) NATing to public IP (x.x.x.x).

One customer in that NAT needs to put a public IP in their router. Under current NAT network, they are unable to do this.

Can I keep the NAT settings (VLAN1) on this port and also assign a second VLAN (VLAN2) to this port with a public IP (y.y.y.y) so existing customers remain the same while the other customer is able to enter a public IP in their router (y.y.y.y)?

Hall of Fame Super Blue

Re: 2 VLANs on 1 port

zrob12ynyng wrote:

Maybe explaining what I would like to do will make it easier to understand what I am trying to accomplish : )

Currently have group of customer under a NAT (VLAN1) network on one LAN port of my router - private IP block (192.168.0.0/24) NATing to public IP (x.x.x.x).

One customer in that NAT needs to put a public IP in their router. Under current NAT network, they are unable to do this.

Can I keep the NAT settings (VLAN1) on this port and also assign a second VLAN (VLAN2) to this port with a public IP (y.y.y.y) so existing customers remain the same while the other customer is able to enter a public IP in their router (y.y.y.y)?

Zach

Sorry, still not getting it. Cna you perhaps post a config of the router specifyinh exactly what you are trying to do.

Jon

Re: 2 VLANs on 1 port

Hi,

You can do the following to resolve your problem:

  1. Use dynamic NAT making use of:
      • access-list, to clasify traffic only to be nat, the rest must be denied.
      • route-map to handle this access-list
      • then NAT making use of route-map
  2. The rest of the traffic: not included in the access-list used to be natted will make use of the public address.
  3. There must be an static route pointing to public cloud.

If you need more expalnation about how to configure this option send us how you have configured your router.

Attn.

Roger

328
Views
0
Helpful
4
Replies
CreatePlease to create content