multiple outside nat interfaces

From: Matthew Seppeler (matthew.seppeler@inxi.com)
Date: Fri Jul 27 2007 - 14:37:30 ART

• Next message: Bit Gossip: "Re: Frame-relay subinterface with same subnet"
• Previous message: Mohamed M Moustafa: "Re: Usage of Address-family ipv4 unicast ...."
• Next in thread: Ina&Laurean: "Re: multiple outside nat interfaces"
• Maybe reply: Ina&Laurean: "Re: multiple outside nat interfaces"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Not sure if this can be done but figured I would post to see if anyone
may have the answer.

I'm doing a SRT to see if you can nat outside of multiple interfaces on
the same router without having to make manual configuration changes.

You have 3 default routes in the routing table, each one associated with
a Vlan (Vlan 10,20 & 30). At any given time only one of these default
routes will be in the routing table and will be determined whether the
port is in an Up/Up status and/or by the administrative distance of the
static in the routing table.
Vlan10 - Ethernet handoff
    ip route 0.0.0.0 0.0.0.0 Vlan10 251
Vlan20 - Wireless handoff
    ip route 0.0.0.0 0.0.0.0 Vlan20 252
Vlan30 - UMTS/GPRS modem
    ip route 0.0.0.0 0.0.0.0 Vlan30 253

The inside source list will remain the same (ie. 192.168.1.0/24 on
Vlan50). However, depending on the situation, the router may only be
connected to the Internet via an Ethernet handoff (ie, DSL, Satellite,
Cable Modem, etc.) Wireless handoff and/or a cellular data card. If all
three are Up/Up, then it takes the Vlan10 as it has the lowest AD.
However, if you do not physically plug something into Vlan10's Ethernet
port then it will be in a Up/Down state and remove its static from the
routing table. Being the case, then Vlan20 is next in line provide its
Vlan interface is Up/Up. If not, then Vlan30 will be the last choice up
Internet connectivity for the router. So in short, the router is kind
of like a "box of chocolates, you never know what you are going to get."
Being the case, I was wondering if there was a way to configure NAT so
that you can use the same inside source list of addresses but have
multiple outside interfaces (Van,20&30) and have NAT automatically work
without having to make any manual NAT configuration changes.

Matt Seppeler

IMPORTANT/CONFIDENTIAL: This message from INX Inc. is intended only for the
use of the addressees shown above. It contains information that may be
privileged, confidential and/or exempt from disclosure under applicable law.
If you are not the intended recipient of this message, you are hereby notified
that the copying, use or distribution of any information or materials
transmitted in or with this message is strictly prohibited. If you received
this message by mistake, please immediately email or call us collect at (469)
549-3800 and delete/destroy the original message.

• Next message: Bit Gossip: "Re: Frame-relay subinterface with same subnet"
• Previous message: Mohamed M Moustafa: "Re: Usage of Address-family ipv4 unicast ...."
• Next in thread: Ina&Laurean: "Re: multiple outside nat interfaces"
• Maybe reply: Ina&Laurean: "Re: multiple outside nat interfaces"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:42 ART