When installing two routers running HSRP and NAT should you use the same NAT pool on both routers or create unique pools for both routers ? I have tested two routers both with the same NAT pools configured and could not find any technical problems but I am a little worried about security issues ie. session hijack etc .
HSRP and NAT are seperate technologies and don't interact with one another.
Without having more details on your NAT configuration (outside interfaces, etc) I can only speculate on some possible issues. If the LAN interfaces with HSRP are the outside interface for NAT then if you have the same NAT pool defined on both routers it is feasible for both routers to translate traffic to the same IP causing a duplicate IP address condition.
For dynamic translations, session highjacking would be more difficult since the other router is probably going to be using a different translated address/port then the other router. If you're worried about security, then use IOS security features (CBAC, access-lists, etc).
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.