Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
429
Views
0
Helpful
2
Replies

CGNAT Routed POOL ASR1k

divadko
Level 1
Level 1

‎01-03-2023 04:46 AM - edited ‎01-03-2023 04:46 AM

Hi all,

i just want to know that what is the right way to use a pool for CGNAT on isg isp ASR 1 for aprox 7000 users.

  1. Wan interface should have its own address with coresponding mask and use POOL from that range? For eg wan address is 1.1.1.181/25 and pool should be for eg 1.1.1.182-1.1.1.254
  2. Create and send a segment of IP address from ASRs upstream router and make a pool on asr from that. For eg: ASRs Upstream Router should have a ip route 1.1.2.0 255.255.255.0 1.1.1.181. And on asr just create a pool for range 1.1.1.1-1.1.1.254 . Will that work?Isnt there needed to add this range to wan interface like it is added the 1.1.1.181 ip with mask? Or it is needed to create a virtual interface with for eg 1.1.2.1 /24 ip and use this virtual interface as "ip nat outside" ?

Thank you

0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎01-06-2023 02:19 AM

 

  1. Define the public IP address pool that will be used for CGNAT. This pool should be large enough to accommodate the approximate number of users you expect to have.

  2. Create a NAT pool object to represent the public IP address pool. This can be done using the "ip nat pool" command in the router's configuration.

  3. Define a NAT inside source and a NAT outside source. The NAT inside source is the range of private IP addresses used by your customers, and the NAT outside source is the public IP address pool you defined in step 1.

  4. Create a NAT translation rule using the "ip nat inside source" command. This rule specifies the NAT inside and outside sources, as well as the NAT translation method (e.g. static NAT or dynamic NAT).

  5. (Optional) If you want to enable NAT overload (also known as PAT or Port Address Translation), you can use the "ip nat inside source list" command to specify a list of ports that should be allowed for NAT overload.

 M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
0 Helpful

divadko
Level 1
Level 1
In response to marce1000

‎01-10-2023 04:25 AM

Is possible to include ARSs wan IP into nat pool? Or i need to exclude it?

For eg if the asrs NAT outside interfaces ip is 10.20.20.5 /25 than can i make pool that will inclide this ip? For eg the pool will be 10.20.20.1-10.20.20.127

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card