Solved: Re: IP NAT POOL ISSUE - Page 2

dmissai · ‎02-21-2024

Hello Team,

I have tried to create NAT POOL for user to be able to browsers internet using our own public ip and not ISP.

interface GigabitEthernet0/0/0
description ===WAN======
ip address 41.200.150.2 255.255.255.252
ip nat outside
negotiation auto
!
interface GigabitEthernet0/0/1
description ==LAN-WIFI==
ip address 192.168.100.1 255.255.255.0
ip helper-address 2.2.2.2
ip nat inside
negotiation auto
!

ip nat pool Vodafone 102.212.200.10 102.212.200.10 prefix-length 30
ip nat inside source list 10 pool Vodafone overload

!

access-list 10 permit 192.168.100.0 0.0.0.255
!

From the router I am able to ping 8.8.8.8 and www.google.com

But user workstation are able to ping 8.8.8.8 but not able to browsers internet like open google.com

paul driver · ‎02-27-2024

Hello @dissai
Thank you for the diagram, it does verify what we are seeing regards the previous outputs you posted.
From what you stated, it is possible to manipulate your traffic to accomplish this split routing so to push internet traffic via the forthcoming DIA path.

Now providing you are receiving a default route from the MPLS and ONLY RFC1918 addressing, As/when you obtain and install this new DIA circut with (102.210.54.8/30) you could policy route and NAT all NON RFC1918 traffic via this new DIA.

(See attached file for a possible solution),

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

dmissai · ‎02-28-2024

Hello Paul,

Thank you very much for guidance but ISP the want WAN IP to be their Public IP's and not my public IP for this scenario what will be the best approach to configure. Let say new DIA WAN IP is 172.16.0.0/30 as example.