Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
236
Views
0
Helpful
1
Replies

NAT for specific src-to-dst adresses

eduardo.viero
Level 1
Level 1

‎06-29-2002 02:37 PM - edited ‎03-01-2019 11:16 PM

Can I use NAT to determine that when a souce address try to reach just a specific destination address, a new address (made by NAT) could be used instead the real source address?

Labels:
0 Helpful
1 Reply 1

yusuff
Cisco Employee
Cisco Employee

‎06-29-2002 03:39 PM

Yes, you can use Extended ACL with NAT and map to another address or even keep the same;

eg;

ip nat pool ourpool 200.1.1.10 200.1.1.20 netmask 255.255.255.0

ip nat inside source route-map nonat pool ourpool overload

!

route-map nonat permit 10

match ip address 175

!

access-list 175 permit ip 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255

access-list 175 deny ip any any

As you can see from above example, we will NAT to 200.1.1.x range IF the source is 10.1.1.0 destined to172.16.1.0.

HTH

R/Yusuf

0 Helpful
Customers Also Viewed These Support Documents