Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
491
Views
5
Helpful
2
Replies

PAT configuration

davidjwelch2000
Level 1
Level 1

‎08-31-2012 06:56 AM - edited ‎03-07-2019 08:38 AM

Hi,

I have PAT set up successfully on 6506 chassis - My outside address range is 78.24.112.114 255.255.255.240

Relevant parts of the config below:

interface Vlan10

ip address 10.0.0.1 255.255.255.0

ip nat inside

!

interface Vlan11

ip address 10.0.1.1 255.255.255.0

ip nat inside

!

interface Vlan12

ip address 10.0.2.1 255.255.255.0

ip nat inside

!

interface Vlan13

ip address 10.0.3.1 255.255.255.0

ip nat inside

!

interface Vlan14

ip address 10.0.4.1 255.255.255.0

ip nat inside

!

interface Vlan15

ip address 10.0.5.1 255.255.255.0

ip nat inside

!

interface GigabitEthernet3/48

ip address 78.24.112.114 255.255.255.240

description WAN connection

ip nat outside

speed 100

duplex full

!

ip nat inside source list 7 interface GigabitEthernet3/48 overload

!

ip route 0.0.0.0 0.0.0.0 78.24.112.113

!

access-list 7 permit 10.0.0.0 0.0.7.255

This works fine but of course is only using the one IP address 78.24.112.114.

Can anyone advise how I can utilize the other outside addresses available or is this not really necessary?

I've browsed through loads of Cisco docs but can't seem to find the answer to this - any help much appreciated!

Labels:
0 Helpful
2 Replies 2

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-31-2012 08:52 AM

Hello David,

in order to use all the public IP addresses for NAT you need to define a NAT pool

ip nat pool PUBLIC prefix 28

and to change the ip nat inside source command to reference the pool with pool PUBLIC instead of the WAN interface

However, the real behaviour may be that of using a single IP address also with the pool with overload (PAT) set

see

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094e77.shtml

Hope to help

Giuseppe

davidjwelch2000
Level 1
Level 1
In response to Giuseppe Larosa

‎09-03-2012 01:51 AM

Thanks Guiseppe,

I see that a NAT pool can be used in both non overload and overload setups.

In a non overload setup I assume that this means that each of my outside addresses (78.24.112.112/28) can be translated to an internal address.

My question really is that in an overload configuration on the Cisco documentation only one address is used : eg

ip nat pool ovrld 172.16.10.1 172.16.10.1 prefix 24

Is there a way to use the other outside addresses or does overloading always use just the one address?

Many thanks

David

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card