[c-nsp] Problem with a nat configuration.

Samuel Catheline scatheline at afone.com
Tue Oct 2 12:28:35 EDT 2012 

Hi, 

Thanks for your answer, I solve my problem with a route-map. 

regards. 




Cordialement, 



Samuel CATHELINE 
Service DELIVERY 
Direction Technique 
Tél. 02 72 73 58 25 
scatheline @afone.com 








AFONE - 11, place François Mitterrand - CS 11024 - 49055 ANGERS cedex 02 
[ t ] 0825 168 639 - [f] 0820 160 329 - ou composez le 3213 et dites « AFONE » 
----- Mail original -----

De: "Curtis LaMasters" <curtislamasters at gmail.com> 
À: "Samuel Catheline" <scatheline at afone.com> 
Cc: cisco-nsp at puck.nether.net 
Envoyé: Mardi 2 Octobre 2012 14:24:12 
Objet: Re: [c-nsp] Problem with a nat configuration. 





On Tue, Oct 2, 2012 at 2:04 AM, Samuel Catheline < scatheline at afone.com > wrote: 


Hello, 

I have a nat configuration problem, with a static NAT, I want exlude to the static nat(192.168.10.1<->217.112.66.70) the trafic to the subnet 10.0.13.0/24 and nat this trafic with the loopback1. 
Is there an issue? 

I have the following NAT configuration: 

interface Loopback1 
description **** L3VPN_SERVICES VOICE 
ip address 172.16.4.76 255.255.255.255 

interface Vlan2 
description *** VLAN DATA 
ip address 192.168.10.253 255.255.255.0 
ip nat inside 

interface Dialer0 
bandwidth 256 
ip address negotiated 
ip nat outside 

ip nat translation tcp-timeout 5400 
no ip nat service sip udp port 5060 
ip nat inside source list L3VPN_SERVICES_VOICE interface Loopback1 overload 
ip nat inside source static 192.168.10.1 217.112.66.70 

ip access-list extended L3VPN_SERVICES_VOICE 
permit ip any 10.0.13.0 0.0.0.255 
deny ip any any 


PS: I'm working with a Cisco 877: 
Cisco IOS Software, C870 Software (C870-ADVSECURITYK9-M), Version 12.4(15)T12, RELEASE SOFTWARE (fc3) 





Regards, 


Samuel CATHELINE 



You will need to configure this with NAT on a stick in mind. http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml Essentially a route map that tells it to go through the loopback interface. Also, loopback0 will need to have " ip nat outside" applied. 

Curtis LaMasters 
http://www.curtis-lamasters.com 

http://www.builtnetworks.com

More information about the cisco-nsp mailing list