[rbak-nsp] NAT configuration
Daniel Celiński
daniel.02c at gmail.com
Tue Feb 19 06:55:06 EST 2013
Try something like that:
ip nat pool nat-pool1 napt multibind
address a.b.c.1/32 port-block 1 to 15
ip nat pool nat-pool2 napt multibind
address a.b.c.2/32 port-block 1 to 15
policy access-list pacl-nat
seq 10 permit ip any <dst net1 of your customers network> class customers
seq 20 permit ip any <dst net2 of your customers network> class customers
seq 100 permit ip any any class internet
nat policy nat-policy1
access-group pacl-nat
class internet
pool pool1 bras
timeout tcp 18000
endpoint-independent filtering udp
class customers
ignore
nat policy nat-policy2
access-group pacl-nat
class internet
pool pool2 bras
timeout tcp 18000
endpoint-independent filtering udp
class customers
ignore
In policy acl "pacl-nat" you include all your customers networks.
>From radius you can return nat policy names: "nat-policy1" or "nat-policy2"
--
Daniel
More information about the redback-nsp
mailing list