Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Does HSRP work with IOS Firewall / NAT

I have two Cisco 3845 routers with switch modules installed.

I am running the Advanced security feature set and using the IOS firewall features with my ISP connection comming directly into one of the Gig ports on my router. Can HSRP be used when NAT is enabled on the router? I would have duplicate NAT entries on both routers an would need to have the outside Gig interface on the second router connected at the same time at the primary router.

2 REPLIES

Re: Does HSRP work with IOS Firewall / NAT

Hi,

When running HSRP between 2 routers, the standby router takes over if the active router goes down. But if this happens when you're using NAT, the traffic flow will be impacted and thus you need to use Cisco IOS Stateful NAT (SNAT) feature, which helps provide higher availability and higher redundancy on your network when using NAT.

http://www.cisco.com/en/US/products/ps6600/products_white_paper09186a0080118b04.shtml

HTH, please do rate all helpful replies,

Mohammed Mahmoud.

New Member

Re: Does HSRP work with IOS Firewall / NAT

Thanks for the reply. It was very helpful. Is there a way to NAT and Firewall rules autimatically replicated from one router to the other? Would implementing Cisco Security Manager to manage the configurations make this easier?

316
Views
4
Helpful
2
Replies
CreatePlease to create content