[rbak-nsp] nat on se-100
Ronald Voermans
r.voermans at global-datacenter.nl
Wed May 19 02:10:51 EDT 2010
Hi all,
Does anyone have a working config for doing (dynamic) nat on a interface. I have the configuration below:
context CUSTOMER
!
!
ip nat pool NAT napt
address 192.168.254.250
!
nat policy cust-policy
! Default class
ipool NAT CUSTOMER
! Named classes
access-group NAT-ACL
class CUST-CLASS
ingore
!
interface CUSTOMER_LAN
ip address 192.168.254.252/24
ip nat cust-policy
ip mtu 1548
!
interface subscribers multibind
ip address 192.168.50.10/24
dhcp relay 1500
ip clear-df
ip arp timeout 900
ip proxy-arp
!
policy access-list NAT-ACL
seq 10 permit ip 192.168.8.0 0.0.0.255 192.168.254.0 0.0.0.255 class CLASS3
!
!
ip route 0.0.0.0/0 192.168.254.1
Customer with subnet 192.168.8.0/24 is bound to interface subscribers. For traffic toward 192.168.254.0/24 I don't want the subnet to get NATed. For all other traffic, the subnet needs to NATed to 192.168.254.250. However, this isn't working. None of the traffic is NATed. Is the configuration above not possibe? What is a good way to configure what I want to accomplish?
Thanks in advance,
Regards,
Ronald Voermans
More information about the redback-nsp
mailing list