From: aananda - Innova Solutions at Cisco ("Ashok)
Date: Tue Jul 10 2007 - 09:02:10 ART
Hi Team,
When NAT is enabled, the routing protocols like BGP, OSPF gets
disconnects as these source addresses gets translated. How to avoid
this?
Here is few debug and config? Do we always deny routing
protocols when enabled for NAT?
~~~
!
interface Ethernet0/0
ip address 3.3.3.2 255.255.255.0
ip nat inside
ip virtual-reassembly
ntp broadcast key 1
!
!
interface Serial2/0
ip address 1.1.1.1 255.255.255.0
ip nat outside
ip virtual-reassembly
serial restart-delay 0
no fair-queue
!
!
router ospf 100
log-adjacency-changes
network 1.1.1.0 0.0.0.255 area 0
network 3.3.3.0 0.0.0.255 area 0
network 0.0.0.0 255.255.255.255 area 0
!
!
!
ip nat pool POOL 10.10.10.10 10.10.10.20 netmask 255.255.255.0
ip nat inside source route-map AA pool POOL reversible
!
access-list 120 deny ospf any any
access-list 120 permit ip 10.10.10.0 0.0.0.255 any
route-map AA permit 10
match ip address 120
!
~~~~
debug:
R1#deb ip nat de
IP NAT detailed debugging is on
R1#
Jul 10 11:26:39.971 : NAT: i: ospf (1.1.1.1, 0) -> ( 224.0.0.5
<http://224.0.0.5> , 0) [967]
Jul 10 11:26:39.971: NAT: s=1.1.1.1->10.10.10.10, d= 224.0.0.5
<http://224.0.0.5> [967]
Jul 10 11:26:49.971: NAT: i: ospf (1.1.1.1, 0) -> ( 224.0.0.5
<http://224.0.0.5> , 0) [969]
Jul 10 11:26:49.971: NAT: s=1.1.1.1-> 10.10.10.10
<http://10.10.10.10> , d=224.0.0.5 [969]
Thanks,
Ashok
This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:40 ART