I have a NAT configuration issue which I can't seem to easily (more specifically cleanly) solve. I need to implement NAT at several customer locations due to IP overlap with other customer sites (we have no control over their IP space). Please consult the attached diagram. Hosts at customer sites A and B should be able to communicate with one another using their native (Local) IP addresses and NOT be NATed. When communicating with the server farm, they should be NATed according to the diagram. Is there a way to implement static nat on a /24 subnet in conjunction with an access list to determine whether NAT is performed or not? If not, is there another way I can implement this? IP addresses need to be consistent; i.e. the first and third IPs in the subnet must ALWAYS be the first and third IPs in the subnet. A global pool that dynamically assigns IPs won?t work. Right now all packets are being NATed upon egressing the router. Thanks in advance.
p.s. I am not atually using the cheeseball IPs depicted in the diagram. I used them in the drawing for you to easily identify Local from Global IPs (saving a little face here :)
I actually figured out a better way to do it. I am going to implement DMVPN tunnels between the customer sites. The tunnel interfaces will not have NAT applied. The physical interfaces, used to pass traffic between the customer sites and the server farm, will have NAT applied. I will then apply distribute-lists to the BGP processes to filter out undesirable routes from the routing tables.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...