Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
293
Views
0
Helpful
3
Replies

NAT Translations from two FastEthernet ports to outside

dasberry
Level 1
Level 1

‎05-10-2006 01:09 PM - edited ‎03-03-2019 03:10 AM

I have a customer who is using two FastEthernets with VLSM in RIP 2 environment with same ip address space.

The first FE uses a 192.168.1.0/25 and the FE0/1 uses a 192.168.1.128/26. The first FE nats just fine through the router. The second coming through a switch using dot1q trunk interfaces does not nat. I have checked and re-checked the config and the voice routes just fine, however data traffic will not resolve an address from DHCP to go out and grab a nat. Anyone have some direction on this?

Labels:
0 Helpful
3 Replies 3

a-vazquez
Level 6
Level 6

‎05-16-2006 10:25 AM

When you use the NAT router feature on a Catalyst 6500 with Supervisor Engine 1/2 and MSFC/MSFC2, packets that traverse the NAT outside interface can (in certain configurations) undergo software routing instead of Layer 3 (L3) switching. The software routing can occur regardless of whether the packets require translation. For packets that traverse the NAT outside interface, the redirection to MSFC for software routing should occur for only those packets that require NAT. Cisco IOS Software only translates traffic that traverses from NAT inside interfaces to NAT outside interfaces. Create the access control list (ACL) for use with NAT to be more specific. Have the ACL limit the software-handled packets to only those packets that require NAT translation. For example, if you use a general ACL, such as permit ip any any, to specify the traffic that requires NAT, all traffic inbound or outbound on the NAT outside interface is software routed. Traffic that does not originate in the NAT inside interfaces or have the NAT inside interfaces as a destination is also software routed. If you use a more specific ACL, such as permit ip 192.168.1.0 0.0.0.255 any, only the NAT outside traffic that matches the ACL is software routed.

0 Helpful

atif.awan
Level 3
Level 3

‎05-16-2006 07:14 PM

Can you please post your configuration?

0 Helpful

dasberry
Level 1
Level 1

‎05-17-2006 05:48 AM

I have resolved this issue, I figured out why the DHCP to NAT translations were not working. It appears that when I split the IP Address off the DHCP network the server wasn't reconfigured to accept the second subnet. I also had a wrong Native VLAN attached to the interface of the switch. this prohibited traffic from forwarding correctly to the server and other entities.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents