[c-nsp] Problem with a nat configuration.
Curtis LaMasters
curtislamasters at gmail.com
Tue Oct 2 08:24:12 EDT 2012
On Tue, Oct 2, 2012 at 2:04 AM, Samuel Catheline <scatheline at afone.com>wrote:
> Hello,
>
> I have a nat configuration problem, with a static NAT, I want exlude to
> the static nat(192.168.10.1<->217.112.66.70) the trafic to the subnet
> 10.0.13.0/24 and nat this trafic with the loopback1.
> Is there an issue?
>
> I have the following NAT configuration:
>
> interface Loopback1
> description **** L3VPN_SERVICES VOICE
> ip address 172.16.4.76 255.255.255.255
>
> interface Vlan2
> description *** VLAN DATA
> ip address 192.168.10.253 255.255.255.0
> ip nat inside
>
> interface Dialer0
> bandwidth 256
> ip address negotiated
> ip nat outside
>
> ip nat translation tcp-timeout 5400
> no ip nat service sip udp port 5060
> ip nat inside source list L3VPN_SERVICES_VOICE interface Loopback1 overload
> ip nat inside source static 192.168.10.1 217.112.66.70
>
> ip access-list extended L3VPN_SERVICES_VOICE
> permit ip any 10.0.13.0 0.0.0.255
> deny ip any any
>
>
> PS: I'm working with a Cisco 877:
> Cisco IOS Software, C870 Software (C870-ADVSECURITYK9-M), Version
> 12.4(15)T12, RELEASE SOFTWARE (fc3)
>
>
>
>
>
> Regards,
>
>
> Samuel CATHELINE
>
You will need to configure this with NAT on a stick in mind.
http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml
Essentially a route map that tells it to go through the loopback interface.
Also, loopback0 will need to have " ip nat outside" applied.
Curtis LaMasters
http://www.curtis-lamasters.com
http://www.builtnetworks.com
More information about the cisco-nsp
mailing list