RE: NAT Overload

From: Pickell, Aaryn (Aaryn.Pickell@xxxxxxxxxxxxx)
Date: Fri Jun 08 2001 - 14:28:44 GMT-3

• Next message: David Fu: "[Q] Multilink PPP and IPX"
• Previous message: Jeff K.: "Re: NAT"
• Maybe in reply to: Rick Stephens: "NAT Overload"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Rick,
        Can you send the whole config? As well as "sho ip nat trans" when
you're seeing a failure? If you have the option, running a "debug ip nat
trans" might also be useful. Also, what IOS are you running?

Aaryn Pickell - CCNP ATM, CCDP, MCSE
Senior Engineer - Routing Protocols
Getronics Inc.
Direct: 713-394-1609
Email:aaryn.pickell@getronics.com

This e-mail message and any attachments are confidential and may be
privileged. If you are not the intended recipient, please notify me
immediately by replying to this message and please destroy all copies of
this message and attachments. Thank you.

> -----Original Message-----
> From: Rick Stephens [mailto:rstephens@wantec.com]
> Sent: Friday, June 08, 2001 9:50 AM
> To: ccielab@groupstudy.com
> Subject: NAT Overload
>
>
> I have a question about NAT overload (PAT). I have used the
> configuration
> below where 100.100.14.129 is the outside address of the router and
> 192.168.1.1 is the internet E0. The pool is set up for only a
> single address
> (100.100.14.131) using overload. But when it is used, the
> first workstation
> connects and fills the pool up to 100% and no other user can
> get out! See
> 'sh ip nat stat' below. The 'sh ip nat trans' only shows the static
> translations.
>
> Then, I can go in, remove the access-list, remove the 2 nat
> pool statements,
> clear that NAT translations and then put the pool statements
> and access-list
> back in just like it was (copy and paste) and it will start working.
>
> What am I doing wrong?
>
>
> ip nat pool ABC 100.100.14.131 100.100.14.131 netmask 255.255.255.192
> ip nat inside source list 1 pool ABC overload
> ip nat inside source static 192.168.1.1 100.100.14.129
> !
> access-list 1 permit 192.168.1.0 0.0.0.255
> access-list 1 permit 192.168.2.0 0.0.0.255
> access-list 1 permit 192.168.3.0 0.0.0.255
> access-list 1 permit 192.168.4.0 0.0.0.255
>
> ****************************************
> Sac_Internet#sh ip nat stat
> Total active translations: 7 (3 static, 4 dynamic; 3 extended)
> Outside interfaces:
> Serial0.1
> Inside interfaces:
> FastEthernet0
> Hits: 22223 Misses: 323
> Expired translations: 329
> Dynamic mappings:
> -- Inside Source
> access-list 1 pool ABC refcount 1
> pool ABC: netmask 255.255.255.192
> start 100.100.14.131 end 100.100.14.131
> type generic, total addresses 1, allocated 1 (100%),
> misses 3792
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: David Fu: "[Q] Multilink PPP and IPX"
• Previous message: Jeff K.: "Re: NAT"
• Maybe in reply to: Rick Stephens: "NAT Overload"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:20 GMT-3