[c-nsp] Static Nat IOS
Bunny Singh
jump2fly82 at yahoo.com
Mon Mar 4 09:24:50 EST 2013
Hi,
I have 3 interfaces on my 2911, out of which gig0/0 is used for outside, gig0/1 is used as a inside and gig0/2 is used for management & nms alert.
Now i have done the dynamic nat on gig0/1 with outside interface which is working fine.
Now i have a requirement to do the ping on WAN ip of my next hop on inside interface gig0/1 from NMS which are lies in gig0/2.
MY inside connecting router is maintained by some one else and has allowed only 8 ip's (10.14.29.8/29) through which i can access, now i want to use one of the ip so that i can NAT my nms ip (172.31.4.22) so that the nms can ping my other router wan ip (10.25.17.9) on inside network. Can any body tell me the static NAT config.
Following is the config:--
interface GigabitEthernet0/0
ip address 172.25.20.20 255.255.255.248
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
ip address 10.25.17.12 255.255.255.248
ip nat inside
ip virtual-reassembly in
duplex full
speed 100
!
interface GigabitEthernet0/2
ip address 172.31.9.70 255.255.255.0
duplex auto
speed 1000
!
interface FastEthernet0/0/0
no ip address
!
interface FastEthernet0/0/1
no ip address
!
interface FastEthernet0/0/2
no ip address
!
interface FastEthernet0/0/3
no ip address
!
interface Vlan1
no ip address
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source route-map nonat interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 10.25.17.9
ip route 10.14.29.9 255.255.255.255 172.25.20.17
ip route 10.14.29.10 255.255.255.255 172.25.20.17
ip route 172.31.4.22 255.255.255.255 172.31.9.1
!
access-list 110 permit ip any host 10.14.29.9
access-list 110 permit ip any host 10.14.29.10
!
route-map nonat permit 10
match ip address 110
Regards
Daljit Singh
More information about the cisco-nsp
mailing list