Re: NAT Server Load Balancing

From: Gregory Gombas (ggombas@gmail.com)
Date: Thu Oct 18 2007 - 14:29:18 ART

• Next message: Joseph Brunner: "RE: just missed again yesterday...2nd time"
• Previous message: Greg Wendel: "Re: just missed again yesterday...2nd time"
• Maybe in reply to: Gregory Gombas: "NAT Server Load Balancing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thank you Narbik,

So is this case it doesn't matter if the packet is coming inbound on
the outside interface, its simply matching on the destination IP
address? Can this rule be generalized to all NAT operations?

I guess what I'm trying to understand is does NAT care which direction
the packet is going (inside --> outside or vice versa) or is it simply
matching on the source or destination IP of the packet?

Regards,
Greg

On 10/17/07, Narbik Kocharians <narbikk@gmail.com> wrote:
> the way i see this command is:
> The packet is coming inbound, and if the destination of the packets matches
> the ACL, then it should be translated using a pool called real-hosts, and if
> you check the pool it probably has type rotary, which selects the first IP
> address in the range and then the second and so forth.
>
>
> On 10/17/07, Gregory Gombas <ggombas@gmail.com> wrote:
> >
> > I'm a little confused about the command syntax used for NAT server
> > load balancing.
> >
> > The following example is from the DOC CD:
> > ip nat inside destination-list 2 pool real-hosts
> >
> > Shouldn't the syntax be:
> > ip nat outside destination-list 2 pool real-hosts
> >
> > Because in reality you are taking packets that are hitting the outside
> > interface and translating their destination address from the virtual
> > server IP to the real server IP.
> >
> > It works fine the way its configured in the DOC CD, I just think the
> > logic is a little backwards and was hoping someone could explain it a
> > little better.
> >
> > Here is the link to the example if you're interested:
> >
> http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cg/hiad_c/ch20/ntbaddrs.htm#wp1073492
> >
> > Thank You,
> > Greg
> >
> >
> _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
>
>
>
> --
> Narbik Kocharians
> CCIE# 12410 (R&S, SP, Security)
> CCSI# 30832
> www.Net-WorkBooks.com

• Next message: Joseph Brunner: "RE: just missed again yesterday...2nd time"
• Previous message: Greg Wendel: "Re: just missed again yesterday...2nd time"
• Maybe in reply to: Gregory Gombas: "NAT Server Load Balancing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Nov 16 2007 - 13:11:16 ART