Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Nat inside to outside, IP not in same subnet as outside IP

Hi All,

 

We have recently upgraded our security appliance from a netgear to a Cisco, config testing has gone well so far.  I do have an issue trying to PAT an internal IP to an global IP. All IP's in the same subnet as the outside IP address work but not this one.  See below:

Outside Interface IP 193.xxx.xxx.99/23

NAT and PAT for addresses 193.xxx.xxx.99-104 are all working.  But I cant get it to work for 195.xxx.xxx.64

object network global_195.xxx.xxx.64

host 195.xxx.xxx.64

 
object network 11
host 192.168.2.25
 
5 (inside) to (outside) source dynamic 11 global_195.xxx.xxx.64
    translate_hits = 0, untranslate_hits = 0
 
When running the packet tracer, it shows packets moving though fine, but I cant access the WAN from 192.168.2.25 when this NAT rule is in place.  When I remove the NAT rule, I can access the WAN through the final catch all NAT rule.
 
I am guessing I am experiencing this due to IP 195.xxx.xxx.64 not being in the same subnet as the outside???  I also notice that the translate_hits = 0, which I find odd.  Can anyone shed any light on this?  Any help would be much appreciated
1 REPLY
Community Member

Your external router needs to

Your external router needs to have a route for the 195.x.x.x address via your device.

37
Views
0
Helpful
1
Replies
CreatePlease to create content