Hi Joby,What are you trying

joby.varghese · ‎03-11-2015

Hi,

Can any one of you help me with an explanation why I am seeing the 1:1 static NATed IP getting patted as well with the below setup. It is some times getting patted using the internal IP (172.X.X1.2) and <public IP1>. And this happening only for the only for (ip nat inside source static 172.X.X1.2 <public IP1>) not to all NAT statement. It looks strange to me:

interface Loopback10
description ***** Loopback for CLAN PAT *****
ip address <public IP3> 255.255.255.255

ip nat inside source list 110 interface Loopback10 overload
ip nat inside source static 172.X.X1.2 <public IP1>
ip nat inside source static 172.X.X.11 <public IP2>

access-list 110 deny ip host <management loopback IP> any
access-list 110 deny ip host <CE WAN interface IP> any
access-list 110 permit ip any any

When see the NAT translation I can see the 172.X.X1.2 getting translated Loopback 10 IP or <public IP1> getting translated Loopback 10 IP.

1941_001B#sh ip nat tr

udp <Loopback10 IP>:55867 172.X.X.2:55867 <Destination>:14040 Destination:14040

tcp <Loopback10 IP>:55867 <public IP1>:55867 <Destination>:14040 Destination:14040

Thanks.

Joby

Mario Grozdanovic · ‎03-11-2015

Hi Joby,

What are you trying to accomplish or are you asking just for clarification on whats happening? Also what traffic do you have going through there thats being natted?

NAT and PAT