Re: NAT - Should this config work?

From: Scott Smith (hioctane@gmail.com)
Date: Wed Aug 16 2006 - 19:20:43 ART

• Next message: Tim Chan: "match input-interface & subinterfaces"
• Previous message: Victor Cappuccio: "RE: LLQ and policing"
• Maybe in reply to: Scott Smith: "NAT - Should this config work?"
• Next in thread: Scott Smith: "Re: NAT - Should this config work?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thanks for the sanity check! R4 does have a route to 150.1.5.5. I
cannot figure out why it doesnt work. Anyone have a idea as to why it
isnt being NAT'd?

-Scott

On 8/16/06, Victor Cappuccio <cvictor@protokolgroup.com> wrote:
> It should
>
> *Mar 1 00:06:00.043: IP: s=150.1.5.5 (FastEthernet0/0), d=137.1.54.4
> (FastEthernet0/0), len 100, rcvd 3
> *Mar 1 00:06:00.047: IP: s=137.1.54.4 (local), d=150.1.5.5, len 100,
> unroutable
>
> Are you sure that the 150.1.5.5 is globally routable
>
> *Mar 1 00:06:22.762: IP: s=0.0.0.0 (Ethernet0/0), d=255.255.255.255, len
> 604, rcvd 2
> *Mar 1 00:06:23.512: IP: s=204.12.1.5 (local), d=137.1.54.4, len 100,
> policy match
> *Mar 1 00:06:23.516: IP: route map POLICY, item 10, permit
> *Mar 1 00:06:23.516: IP: s=204.12.1.5 (local), d=137.1.54.4 (Loopback0),
> len 100, policy routed
> *Mar 1 00:06:23.516: IP: local to Loopback0 137.1.54.4
> *Mar 1 00:06:23.516: NAT: s=204.12.1.5->150.1.5.5, d=137.1.54.4 [27]
> *Mar 1 00:06:23.520: IP: tableid=0, s=150.1.5.5 (Loopback0), d=137.1.54.4
> (Ethernet0/0), routed via FIB
> *Mar 1 00:06:23.520: IP: s=150.1.5.5 (Loopback0), d=137.1.54.4
> (Ethernet0/0), g=137.1.54.4, len 100, forward.
> Success rate is 0 percent (0/1)
> R5#
>
> Thanks
> Victor.-
>
> -----Mensaje original-----
> De: nobody@groupstudy.com [mailto:nobody@groupstudy.com] En nombre de Scott
> Smith
> Enviado el: Miircoles, 16 de Agosto de 2006 04:03 p.m.
> Para: groupstudy
> Asunto: NAT - Should this config work?
>
> interface Loopback0
> ip address 150.1.5.5 255.255.255.0
> ip nat outside
> !
> interface Ethernet0/0
> ip address 204.12.1.5 255.255.255.0
> ip nat inside
> !
> ip local policy route-map POLICY
> ip nat inside source list 1 interface Loopback0 overload
> !
> access-list 1 permit 204.12.1.0 0.0.0.255
> !
> route-map POLICY permit 10
> match ip address 1
> set interface Loopback0
>
> ============================================================
>
> Rack1R5#ping 137.1.54.4 source e0/0 repeat 1
>
> Type escape sequence to abort.
> Sending 1, 100-byte ICMP Echos to 137.1.54.4, timeout is 2 seconds:
> Packet sent with a source address of 204.12.1.5
>
> 01:26:17: IP: s=204.12.1.5 (local), d=137.1.54.4, len 100, policy match
> 01:26:17: ICMP type=8, code=0
> 01:26:17: IP: route map POLICY, item 10, permit
> 01:26:17: IP: s=204.12.1.5 (local), d=137.1.54.4 (Loopback0), len 100,
> policy routed
> 01:26:17: ICMP type=8, code=0
> 01:26:17: IP: local to Loopback0 137.1.54.4
> 01:26:17: IP: tableid=0, s=204.12.1.5 (Loopback0), d=137.1.54.4
> (BVI1), routed via FIB
> 01:26:17: IP: s=204.12.1.5 (Loopback0), d=137.1.54.4 (BVI1),
> g=137.1.54.4, len 100, forward
> 01:26:17: ICMP type=8, code=0.
>
> Success rate is 0 percent (0/1)
>
> Rack1R5#sh deb
> Generic IP:
> IP packet debugging is on (detailed)
> IP NAT debugging is on
> IP NAT detailed debugging is on
> Policy Routing:
> Policy routing debugging is on
>
>
>
> TIA!
>
> -Scott
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Tim Chan: "match input-interface & subinterfaces"
• Previous message: Victor Cappuccio: "RE: LLQ and policing"
• Maybe in reply to: Scott Smith: "NAT - Should this config work?"
• Next in thread: Scott Smith: "Re: NAT - Should this config work?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Sep 01 2006 - 15:41:57 ART