Re: IP Nat "no-alias" option

From: Ivan (ivan@iip.net)
Date: Thu Oct 26 2006 - 08:32:12 ART

• Next message: Scott Morris: "RE: Need QoS Configuration both side?"
• Previous message: Carlos G Mendioroz: "Re: OSPF questions (IE VOL1 LAB7)"
• Maybe in reply to: Schulz, Dave: "IP Nat "no-alias" option"
• Next in thread: Schulz, Dave: "RE: IP Nat "no-alias" option"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To check this feature, use ICMP. If static nat cofigured with no-alias, router
don't answer to ICMP-request. Therefore connection can't be established to
inside global address.

R2>en
R2#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#ip nat inside source static 10.12.222.1 10.23.20.20
R2(config)#
*Oct 26 15:45:25.027: %LINEPROTO-5-UPDOWN: Line protocol on Interface NVI0,
changed state to up
R2(config)#^Z
R2#
R2#sh ip nat trans
Pro Inside global Inside local Outside local Outside global
--- 10.23.20.20 10.12.222.1 --- ---
R2#
R2#deb ip icmp
ICMP packet debugging is on
R2#
*Oct 26 15:47:30.639: ICMP: echo reply sent, src 10.23.20.20, dst 10.23.20.2
*Oct 26 15:47:30.687: ICMP: echo reply sent, src 10.23.20.20, dst 10.23.20.2
*Oct 26 15:47:30.739: ICMP: echo reply sent, src 10.23.20.20, dst 10.23.20.2
*Oct 26 15:47:30.787: ICMP: echo reply sent, src 10.23.20.20, dst 10.23.20.2
*Oct 26 15:47:30.823: ICMP: echo reply sent, src 10.23.20.20, dst 10.23.20.2
R2#
R2#
R2#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#no ip nat inside source static 10.12.222.1 10.23.20.20
R2(config)#ip nat inside source static 10.12.222.1 10.23.20.20 no
R2(config)#ip nat inside source static 10.12.222.1 10.23.20.20 no-a
R2(config)#ip nat inside source static 10.12.222.1 10.23.20.20 no-alias
R2(config)#^Z
R2#
R2#
R2#
*Oct 26 15:48:00.511: %SYS-5-CONFIG_I: Configured from console by console
R2#
*Oct 26 15:48:04.503: ICMP: redirect sent to 10.23.20.2 for dest 10.23.20.20,
use gw 10.23.20.20 <------- No alias is active

On Wednesday 25 October 2006 21:21, Schulz, Dave wrote:
> That is pretty much all the docCD says on the subject. So, how can this be
> tested? Is there a way to real know this for sure?
>
> Dave
>
> ________________________________
>
> From: Ivan [mailto:ivan@iip.net]
> Sent: Wed 10/25/2006 7:43 AM
> To: ccielab@groupstudy.com; Schulz, Dave
> Subject: Re: IP Nat "no-alias" option
>
>
>
> Static NAT IP can responce to ARP-request. "no-alias" forbidden such
> action.
>
> On Wednesday 25 October 2006 14:09, Schulz, Dave wrote:
> > Group -
> >
> > I have been working with a lab, where it is required to use NAT, and
> > where the inside has multiple exit points. The solution uses the
> > "no-alias" option as part of the solution. I am not as concerned about
> > the lab as I am in trying to understand this option .... and it appears
> > to be confusing on write-ups that I have seen, and the docCD is very
> > vague. Does anyone have a grasp of what this option really does and how
> > to test it?
> >
> >
> > Dave Schulz
> >
> > Email: dschulz@dpsciences.com <mailto:dschulz@dpsciences.com >
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
> --
> Ivan
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

-- 
Ivan

• Next message: Scott Morris: "RE: Need QoS Configuration both side?"
• Previous message: Carlos G Mendioroz: "Re: OSPF questions (IE VOL1 LAB7)"
• Maybe in reply to: Schulz, Dave: "IP Nat "no-alias" option"
• Next in thread: Schulz, Dave: "RE: IP Nat "no-alias" option"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Wed Nov 01 2006 - 07:29:06 ART