Buy or Renew
Buy or Renew
This forum is no longer in read-only mode. See this post for updates
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
692
Views
0
Helpful
1
Replies

Cisco 527W-U routed subnet. Is one-to-one NAT supported?

paul050177
Level 1
Level 1

‎01-16-2013 03:34 AM

Hello - we are trying to configure one to one NAT translations on a Cisco 527W-U, but are having some problems. We are running firmware version

1.2.4 (003) on the 527.

The DSL line is assigned with a /29 address range x.x.x.64 /29

The DSL WAN interface picks up x.x.x.65 /32 from the Radius server. We are using the default private IP address range 192.168.15.0 /24 on the LAN (VLAN1), and can get to the internet ok with a PC connected to the LAN.

However when we try to set up a public IP address in the same range (eg x.x.x.66 /29) on VLAN1 (with x.x.x.67 on the PC) it will not connect. (won't allow us to configure an address from the same range as the WAN on a new VLAN interface).

Ideally we would want to be able to do one to one NAT translations eg x.x.x.66 on the outside to 192.168.15.2 inside, x.x.x.67 outside to 192.168.15.3 inside etc, but this will not either. We have tried this on a normal IOS router (887) and it worked ok. We have also tried the same on a small DSL router / modem product similar to the 527 from another manufacturer and it worked ok on that, but we wanted it to be able to work on the 527.

We have tried the NAT bypass feature without any success, reading several other discussion forums on this website leads me to believe that one to one NAT is not supported on this equipment at the moment, or at least not at the current firmware release.

One work around would be to just assign a /32 to the WAN interface on the DSL and route statically to a different routed subnet configured on the LAN, however we were wanting to avoid having to do that if possible.

Thanks for any help / info anyone can give.

Paul

Labels:
0 Helpful
1 Reply 1

jonatrod
Level 7
Level 7

‎02-14-2013 09:03 AM

Good morning

Hi Paul, thank you for using our forum, my name is Johnnatan I am part of the Small business Support community.

I am glad to assist you with your question, regrettably your SRP527W is not able to do one-to-one Nat, in this case I could advise you, to configure port forwarding to replace that protocol.

You can configure the Port forwarding following these steps:

1. Network Setup>NAT>Port Forwarding, Click add.

2. Enter the port forwarding settings as defined in Port Forwarding Settings table

3. Click “submit” then “save”

In this case you need to specify the address that you want to send packages outside xxx.xxx.xxx.66 and address who will pass for that address 192.168.15.2 and xxx.xxx.xxx.67 outside to 192.168.15.3 inside. You will be able to redirect the traffic as you wish

I hope you find this answer useful,

*Please mark the question as Answered or rate it so other users can benefit from it"

Greetings,

Johnnatan Rodriguez Miranda.

“Please rate useful posts so other users can benefit from it” Greetings, Johnnatan Rodriguez Miranda. Cisco Network Support Engineer.
0 Helpful
Customers Also Viewed These Support Documents