Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
963
Views
0
Helpful
5
Replies

IPv4 NATs not working

jseilerwfg
Beginner
Beginner

‎06-29-2012 07:36 AM - edited ‎03-04-2019 04:50 PM

I've been struggling for this one now for about 3 weeks.

We have a router that boarders a B2B connection and within the config we NAT our internals to a specific set of addresses.

So, for example (addresses have been changed from production):

ip nat inside source static 192.168.1.22 192.168.2.22

ip nat inside source static 192.168.1.23 192.168.2.23

ip nat inside source static 192.168.1.27 192.168.2.27

ip nat inside source static 192.168.1.28 192.168.2.28

ip nat inside source static 192.168.1.77 192.168.2.77 <--- Problem child

!

ip nat translation timeout 300

What I am running into is the 192.168.1.77 inside local (aka Real) is a DNS server that forwards requests to another DNS server across our B2B connection.  Every-so-often, the router decides to stop translating the address and nobody can access certain hosts. I have to issue 'clear ip nat translation *' to get it working aging.

2811 Running 12.4(24)T3

TIA!

Labels:
0 Helpful
5 Replies 5

handoko wiyanto
Participant
Participant

‎06-29-2012 08:48 AM

Did you check the cpu and memory utilization before clearing the nat translation?

Sent from Cisco Technical Support iPad App

0 Helpful

jseilerwfg
Beginner
Beginner
In response to handoko wiyanto

‎06-29-2012 09:45 AM

Yep, It's snoozing

0 Helpful

pompeychimes
Enthusiast
Enthusiast
In response to jseilerwfg

‎06-29-2012 11:44 AM

For what its worth my strange NAT problems have always be resolved with an IOS change.

James

0 Helpful

jseilerwfg
Beginner
Beginner
In response to pompeychimes

‎06-29-2012 11:55 AM

Yeah, I'm thinking about jumping up to T5 on the current train.  I've also had it freak out when using object-groups in ACLs

0 Helpful

handoko wiyanto
Participant
Participant
In response to jseilerwfg

‎06-29-2012 03:21 PM

hi,

how much dram and flash do you have for that router?

i was reading release note here

http://www.cisco.com/en/US/docs/ios/12_4t/release/notes/124TCAVS.html

it seems that those T releases do have problems with nat

well, perhaps T5 is a good start, but im suggesting you start with T7, it resolve quite important bug:

CSCtg47129

Symptoms: A memory leak is seen when NAT is configured.

Conditions: This symptom is observed when NAT is configured.

Workaround: There is no workaround.

regards,

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents