From: Nir Wittenberg (nwittenberg@msncomm.com)
Date: Tue Apr 20 2004 - 01:52:08 GMT-3
Pretty simple config:
interface Loopback0
description NAT pool
ip address 165.83.16.1 255.255.255.0
ip nat inside source list 160 interface Loopback0 overload
ip nat inside source static 10.147.159.4 165.83.16.2
access-list 160 permit ip 10.147.0.0 0.0.255.255 any
access-list 160 remark For NAT
-----Original Message-----
From: Tony Schaffran [mailto:groupstudy@cconlinelabs.com]
Sent: Friday, April 16, 2004 7:24 PM
To: Nir Wittenberg; ccielab@groupstudy.com
Subject: RE: DNS and NAT
This sounds like a problem with your NAT configuration. I have come
across this situation several times with our customers.
The problem has been that when they static NAT an internal IP, like
their web server, they forget to exclude that address from the dynamic
NAT pool.
Tony Schaffran
Network Analyst
CCIE #11071
CCNP, CCNA, CCDA,
NNCDS, NNCSS, CNE, MCSE
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals.
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Nir Wittenberg
Sent: Friday, April 16, 2004 1:55 PM
To: ccielab@groupstudy.com
Subject: DNS and NAT
Is there a solution within IOS to intercept DNS resolution? My issue is
that I have hosts and a WWW server on the same segment. All are being
NATed. The DNS servers sits outside of the Network/NAT and tells the
rest of the enterprise the way to get to the WWW server use this global
IP which has a static translation to the WWW server. The issue is that
when the local host do a DNS lookup they are getting the global IP
rather than the local IP.
I know the PIX can do this with the dns and alias keywords but I am
looking for an IOS solution.
Thanks,
Nir
CCIE 12261
This archive was generated by hypermail 2.1.4 : Mon May 03 2004 - 19:48:50 GMT-3