10-01-2014 03:38 AM - edited 03-11-2019 09:50 PM
HI,
I am having a problem getting my head around destination NAT..
Problem I have is that I need to NAT all requests from specific IP's going to destination IP 10.aaa.bbb.x to another IP in our VM environment on 10.aaa.ccc.y. This is to assist in the migration of service from 1 server to another.
so was thinking I need an ACL to sort the traffic out, and a destination NAT to change the destination IP so that all requests go to the modified one. only problem being, that I cant do static NAT based on destination...
So, do I need to reverse the process as such so that my inside interface becomes the outside and vice versa?
giving
IP nat outside source 10.aaa.bbb.x 10.aaa.ccc.y (outside int being the one with the new VM host in it)
access-list 100 permit IP host 10.aaa.eee.f 10.aaa.bbb.x (where f,g,h,i are specific individual hosts)
access-list 100 permit ip host 10.aaa.eee.g 10.aaa.bbb.x
access-list 100 permit IP host 10.aaa.eee.h 10.aaa.bbb.x
access-list 100 permit ip host 10.aaa.eee.i 10.aaa.bbb.x
int gi1/0/1 (where this int is the DG for the VM environment where the new host IP resides)
ip add 10.aaa.ccc.$ xxx.xxx.xxx.xxx
ip nat outside
int gi1/0/6
ip add 10.aaa.ccc.$ xxx.xxx.xxx.xxx
ip nat inside (where this is our old host, which we need to keep active until all hosts are migrated over)
route-map NAT permit 10
match ip address 100
Cheers
10-01-2014 05:39 AM
Hi,
If I had understand your problem correctly, you need the following configuration:
interface gi1/0/6
ip address 10.aaa.bbb.$ 255.255.255.0 // NOTE: I have changed this address to bbb net
ip nat inside
interface gi1/0/1
ip address 10.aaa.ccc.$ 255.255.255.0
ip nat outside
ip nat outside source static 10.aaa.ccc.y 10.aaa.bbb.x // Changed the order of addresses
ip route 10.aaa.bbb.x 255.255.255.255 10.aaa.ccc.y
Hosts on bbb network must access server 10.aaa.ccc.y as 10.aaa.bbb.x.
The static route is needed because 10.aaa.bbb.0/24 is associated with gi1/0/6 interface.
I hope this could help your configuration.
Best regards,
Pedro Lereno
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide