cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
237
Views
0
Helpful
5
Replies
Beginner

Destination NAT or Hide NAT

Hello,

I have a doubt while doing Destination NAT or Hide NAT for Multiple IPS.

 

Suppose - 192.168.1.1-10 --> 10.10.10.11 & 10.10.10.12 on port 80

I want 192.168.1.1-10 to hit 2.2.2.2 and that will get translated to 10.10.10.11 & 10.10.10.12 

 

My Question is can i use a single NAT ip for both these destinations ? Suppose one of the IPs makes a connection to 10.10.10.11 with NAT IP 2.2.2.2 , will another connection be successful with only one NAT IP and same port ?

5 REPLIES 5
VIP Mentor

Re: Destination NAT or Hide NAT

Hello,

 

it is unclear what you are trying to accomplish:

 

You want 192.168.1.1 thru 192.168.1.10 translated to 2.2.2.2 first, and then to either 10.10.10.11, or 10.10.10.12 ? All IP addresses are configured on the same router ?

VIP Advisor

Re: Destination NAT or Hide NAT

Hello


@thatsdanish25 wrote:

Hello,

I have a doubt while doing Destination NAT or Hide NAT for Multiple IPS.

 

Suppose - 192.168.1.1-10 --> 10.10.10.11 & 10.10.10.12 on port 80

I want 192.168.1.1-10 to hit 2.2.2.2 and that will get translated to 10.10.10.11 & 10.10.10.12 

 

My Question is can i use a single NAT ip for both these destinations ? Suppose one of the IPs makes a connection to 10.10.10.11 with NAT IP 2.2.2.2 , will another connection be successful with only one NAT IP and same port ?


Sounds like you may need to LB your nat but to clarify
192.168.1.1 -10 are you inside local addresses (lan)
10.10.10.11-12 are you inside global addresses (wan)
2.2.2.2 is a public ip address that you want to reach and is reachable from 10.10.10.11-12


Example of possible NAT LAB
access-list 100 permit tcp host 10.10.10.11 any eq 80
access-list 100 permit tcp host 10.10.10.12 any eq 80
ip nat pool LB 192.168.1,1 192.168.1.10 prefix-length 24 type rotary

ip nat inside destination list 100 pool LB

 



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
Beginner

Re: Destination NAT or Hide NAT

Hi,

 

Its a multi Tenant Environment where the Source Address are a group of 192.168.1.1-10 (10 IPs) and they need to reach the Destination 10.10.10.11 and 12.

 

But there is a restriction for traffic flow with respect to these subnets , so i want to DNAT/HideNAT the Destinations behind the routable 2.2.2.2. But the Problem is that i feel DNAT is one to one only and if i assign a single NAT IP to 2 Destinations it might not work for both of them

 

Thanks

VIP Advisor

Re: Destination NAT or Hide NAT

Hello

So the 10.10.10.11-12 are outside your lan network and visibility into your network is for these hosts is to hit 2.2.2.2 correct
hosts  >10.10.10.11-12 <--> 2.2.2.2 <nat lan>192.168.1.1 -10

So if the above is correct and the example i provided previously traffic from those two host should load balance to your lan host in the nat pool



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
Beginner

Re: Destination NAT or Hide NAT

Thanks for the reply...

For a better understanding suppose there is a following Static NAT rule .

Source - 192.168.1.1 Destination 10.10.10.1-10    Translated Source - Same      Translated Destination 10.80.25.1-10

So in this case each IP for Destination 10.10.10.X will be translated to 10.80.25.X for each individual communication ?


CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards