Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Multiple NAT on different interfaces/subinterface - Cisco Routers C2600/2800/2900


Im a "almost" CCNA and Im working almost 2 years now on a company that gives services to several clients....for which establishes many encrypted tunnels over private and public links. Over the time I have learn by trial and error how to set up Site2Site VPN and also interface tunnels on routers..but my big question is how to configure multiple NAT over several subinterfaces (each represent a different client)? sometimes is desired to give connections between clients so NAT between subinterfaces will do my life not straighforward for me to do it on a router rather than a the ASA.

Can you please give some tips if this is possible? feasible? on routers? what usually is done in this case? what is the ideal topology for this cases?




Yes it's possible.If you have

Yes it's possible.

If you have multiple end clients then you probably will be (or will want to) use VRFs to keep their traffic separate from each other and avoid issues around IP address overlapping.

Once you set that up you can easy do NAT within each VRF, the advantage is that you then have just one inside and outside per VRF (and per customer) and your NAT configuration becomes quite straightforward.