NAT Problem

From: Sridhar Vaidyanathan (vsridhar83@gmail.com)
Date: Tue Dec 09 2008 - 06:53:40 ARST

• Next message: raul raul: "Juniper Question"
• Previous message: Marc La Porte: "I think we have a winner!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Dear All

I am having a problem in natting the IP address using the pool. The router
does not translate at all. Can you please tell me where I am going wrong.
Please refer to the below configuration (truncated). Also see the below
'show ip nat translations' output.

Thanks,
Sridhar.

*!
interface Tunnel2
ip address 10.10.30.1 255.255.255.248
no ip route-cache cef
no ip route-cache
tunnel destination 192.168.13.1
!
interface Tunnel10
ip address 10.12.30.1 255.255.255.240
ip nat outside
ip virtual-reassembly
tunnel source GigabitEthernet0/0
tunnel destination 192.168.250.253
!
interface Loopback111
ip address 192.168.9.4 255.255.255.255
!
interface GigabitEthernet0/0
ip address 192.168.5.1 255.255.255.252
ip ospf database-filter all out
duplex auto
speed auto
media-type rj45
negotiation auto
!
interface GigabitEthernet0/1
ip address 192.168.9.1 255.255.255.252
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
media-type rj45
negotiation auto
!
interface FastEthernet0/0/0
switchport access vlan 10
!
interface FastEthernet0/0/1
switchport access vlan 10
!
interface FastEthernet0/0/2
switchport access vlan 10
!
interface FastEthernet0/0/3
switchport access vlan 10
!
interface Vlan10
ip address 172.16.5.4 255.255.255.0
ip nat inside
ip virtual-reassembly
standby ip 172.16.5.3
!
router ospf 1
log-adjacency-changes
network 10.12.30.0 0.0.0.255 area 0
network 172.16.0.0 0.0.255.255 area 1
network 192.168.0.0 0.0.255.255 area 0
!
ip classless
ip route 0.0.0.0 0.0.0.0 172.16.5.1
ip route 10.12.64.0 255.255.224.0 10.12.30.2
ip route 172.19.0.0 255.255.255.0 10.129.0.2
ip route 192.168.10.3 255.255.255.255 192.168.9.2
ip route 192.168.10.4 255.255.255.255 192.168.9.2
ip route 192.168.10.5 255.255.255.255 192.168.9.2
ip route 202.138.123.68 255.255.255.255 192.168.9.2
ip route 202.138.123.73 255.255.255.255 192.168.9.2
ip route 202.138.123.75 255.255.255.255 192.168.9.2
!
ip nat pool POOL1 192.168.9.4 192.168.9.4 netmask 255.255.255.252
ip nat inside source static 172.16.2.22 10.12.30.3 route-map TEST1
extendable
ip nat inside source static 172.16.2.22 192.168.9.3 route-map TEST2
extendable
ip nat inside source list 1 pool POOL1 overload
ip nat inside source static 172.16.3.15 192.168.9.5
ip nat outside source static 202.138.123.68 192.168.10.3
ip nat outside source static 202.138.123.73 192.168.10.4
ip nat outside source static 202.138.123.75 192.168.10.5
!
logging trap debugging
logging 172.16.7.51
access-list 1 permit 172.16.7.51
access-list 1 permit 172.16.7.40
access-list 1 permit 172.16.7.52
access-list 2 permit 172.16.7.51 log
access-list 50 permit 172.16.7.51 log
!
route-map TEST1 permit 10
match interface Tunnel10
!
route-map TEST2 permit 10
match interface GigabitEthernet0/1
!
!*
*Router#sh ip nat translations
Pro Inside global Inside local Outside local
Outside global
tcp 172.16.7.51:4449 172.16.7.51:4449
----- ------

*

Blogs and organic groups at http://www.ccie.net

• Next message: raul raul: "Juniper Question"
• Previous message: Marc La Porte: "I think we have a winner!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jan 01 2009 - 12:53:08 ARST