Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

IP Nat Inside Source Static

I would like to add the following configuration to FastEthernet0/1.200.

"IP Nat Inside Source Static 10.1.0.11 216.x.x.x" (x=hidden numerical value for purpose of this forum/internet).

HOWEVER,

current assignment is configured as:

ip http server

ip http authentication local

ip http secure-server

ip nat inside source list NAT interface FastEthernet0/1.200 overload

ip nat inside source static 10.1.0.10 216.109.x.x (x=hidden values for purpose of this forum/internet).

*** When I attempted to add the new value, a error message appeared stating another entry for this IP address already exists; 216.109.x.x.

Can I configure same interface with two private ip addresses to allow dns & mail?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: IP Nat Inside Source Static

Can you try using the dynamic rules as below?

ip nat pool pool1 216.109.x.10 216.109.x.10 prefi 30

ip nat inside source list 1 pool pool1

access-list contain permit 0.10 and 0.11

I think this one solves your problem.

HTH,

Radhika

8 REPLIES
Hall of Fame Super Blue

Re: IP Nat Inside Source Static

Hi

Can you add the keyword "extendable" to each of your "ip nat source static ..." commands. eg

ip nat inside source static 10.1.0.10 216.109.x.x extendable

etc.

This allows the router to use port number for mappings as well which should allow it to resolves 2 private addresses to the same public.

HTH

Jon

Community Member

Re: IP Nat Inside Source Static

Ok, i just entered:

ip nat inside source static 10.1.0.10 216.109.x.x extendable. After entering it, it appears to have accepted it.

Then I entered:

ip nat inside source static 10.1.0.11 216.109.x.x

I got the following error:

DPI-CME-2811(config)#$de source static 10.1.0.11 216.109.x.x extendable

% similar static entry (10.1.0.10 -> 216.109.202.34) already exists

DPI-CME-2811(config)#

Hall of Fame Super Blue

Re: IP Nat Inside Source Static

Hi

Sorry, was just editing my previous reply

ip nat inside source static tcp 10.1.0.10 25 216.109.x.x 25 extendable

ip nat inside source static udp 10.1.0.11 53 216.109.x.x 53 extendable

This obviously covers mail and DNS but i don't know which port goes with which server.

Jon

Community Member

Re: IP Nat Inside Source Static

I appreciate the prompt replies and information.

I am a little confused.

In your recent reply, you indicate two private IP addresses; each one having a separate port number to reflect that service.

wouldn't I create two entries as follows because the *.11 is new mail server:

ip nat inside source static tcp 10.1.0.11 25 216.109.x.x 25 extendable

ip nat inside source static udp 10.1.0.11 53 216.109.x.x 53 extendable

?

Hall of Fame Super Blue

Re: IP Nat Inside Source Static

Hi

I'm a little confused now. I though that was what you wanted ie. to map 2 private IP addresses to the same public IP.

Jon

Community Member

Re: IP Nat Inside Source Static

YES. :-)

Currently,

ip nat inside source static 10.1.0.10 216.109.x.x.

I want to add a new mail server, 10.1.0.11 so it can be accessed via internet.

I was trying to add:

ip nat inside source static 10.1.0.11 216.109.x.x. but received error.

Hall of Fame Super Blue

Re: IP Nat Inside Source Static

Okay

Can you provide details of excatly what you want to re port numbers and private IP addresses.

I'm assuming you are using the same public IP address ?

Jon

Cisco Employee

Re: IP Nat Inside Source Static

Can you try using the dynamic rules as below?

ip nat pool pool1 216.109.x.10 216.109.x.10 prefi 30

ip nat inside source list 1 pool pool1

access-list contain permit 0.10 and 0.11

I think this one solves your problem.

HTH,

Radhika

916
Views
0
Helpful
8
Replies
CreatePlease to create content