Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3924
Views
0
Helpful
4
Replies

Multiple nat inside statements

Go to solution
shivani.sharma
Level 1
Level 1

‎10-15-2010 08:21 AM - edited ‎03-11-2019 11:54 AM

Hello,

My router interface already has a nat inside with a nat pool configured for natting 10.x.x.x private IPs to 172.28.x.x private IPs. I want to use the same interface to NAT a subnet of 10.x.x.x private IPs to the interface IP(public IP) to go to internet. Can I just add another "nat inside source list interface" statement for this to work?

Please note that the 10.x.x.x subnet I need to translate to interface(public ip) is not included in the access-l for the nat already configured on the interface.

Thanks!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rudresh Veerappaji
Cisco Employee
Cisco Employee
In response to shivani.sharma

‎10-15-2010 10:05 AM


Hi Shivani,

We would need following configuration to acheive the requirement:

ip nat inside source route-map interface GigabitEthernet0/1.104  overload vrf

ip access-list extended
permit ip 10.7.251.128/25 any

route-map permit 10
match ip address

--Here i'm assuming your interface with public ip is GigabitEthernet0/1.104

Let me know if this works,

Cheers,

Rudresh V

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Rudresh Veerappaji
Cisco Employee
Cisco Employee

‎10-15-2010 09:35 AM

Hi Shivani,

Yes it should work by adding a new nat statement for the selected private network 10.x.x.x

ip nat inside source list 1 interface overload

and access-list 1 defining the traffic 10.x.x.x

Can you post your existing nat configuation here so that i can confirm in case u need to use route-maps, or if a nat statement mentioned above will work fine.

Cheers,

Rudresh V

0 Helpful

Go to solution
shivani.sharma
Level 1
Level 1
In response to Rudresh Veerappaji

‎10-15-2010 09:43 AM

Hello Rudresh,

Thanks for your response. Below is existing nat I have on the interface and the subnet I need to nat to public ip of the interface is 10.7.251.128/25.

ip nat pool 172.28.120.145 172.28.120.158 netmask 255.255.255.240


ip nat inside source route-map pool vrf

route-map permit 10
  match ip address
match interface GigabitEthernet0/1.104


Extended IP access list
    10 permit ip 172.28.120.128 0.0.0.15 host
    20 permit ip 172.28.120.128 0.0.0.15 host
    30 permit ip 172.28.120.128 0.0.0.15 host
    40 permit ip 10.4.0.0 0.3.255.255 host
    50 permit ip 10.4.0.0 0.3.255.255 host
    60 permit ip 10.4.0.0 0.3.255.255 host
    70 permit ip 10.4.0.0 0.3.255.255 host
    80 permit ip 10.4.0.0 0.3.255.255 host

Thank you.

0 Helpful

Go to solution
Rudresh Veerappaji
Cisco Employee
Cisco Employee
In response to shivani.sharma

‎10-15-2010 10:05 AM


Hi Shivani,

We would need following configuration to acheive the requirement:

ip nat inside source route-map interface GigabitEthernet0/1.104  overload vrf

ip access-list extended
permit ip 10.7.251.128/25 any

route-map permit 10
match ip address

--Here i'm assuming your interface with public ip is GigabitEthernet0/1.104

Let me know if this works,

Cheers,

Rudresh V

0 Helpful

Go to solution
shivani.sharma
Level 1
Level 1
In response to Rudresh Veerappaji

‎10-26-2010 11:11 AM

Thanks Rudresh!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card