Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
796
Views
5
Helpful
3
Replies

NAT'd Subnet and Public Subnet on Same vLAN

Go to solution
matthewbutt
Level 1
Level 1

‎02-04-2013 12:15 PM - edited ‎03-04-2019 06:56 PM

Hi All,

I hope this finds you well. A quick message to pick your brains if I may with a current issue I have on my Cisco 2921 router.

In short, we have two physical interfaces - one internal (0/2), one external (0/0). The internal interface has several sub-interfaces of which one has a Public Subnet applied to it (0/2.100), and another sub-interface has a NAT'd Subnet applied to it (0/2.101).

The traffic from the NAT'd subnet (0/2.101) appears online as the Public IP Address on the first physical inteface (0/0), as expected, when you lookup your Public IP Address online. We need to move this NAT'd Subnet to appear as one of the Public IP Addresses from within the other sub-interface (0/2.100).

My question is, how would I achieve this. This is the current configuration including the two physical interfaces, and the two sub-interfaces:

interface GigabitEthernet0/0

ip address 31.210.XX.XX 255.255.255.248

ip nat outside

ip virtual-reassembly in

duplex auto

speed auto

!

interface GigabitEthernet0/2

no ip address

duplex auto

speed auto

!

interface GigabitEthernet0/2.100

encapsulation dot1Q 100

ip address 31.210.XX.XXX 255.255.255.240

!

interface GigabitEthernet0/2.101

encapsulation dot1Q 101

ip address 192.168.1.254 255.255.255.0

ip nat inside

ip virtual-reassembly in

To summarise, we would like the NAT'd sub-interface (0/2.101) to use one of the IP Addresses in the other sub-interface (0/2.100) as it's Public address. I hope that makes sense, thanks in advance for your help and of course ask any further questions you may have!

All the best,

Matthew

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Syed Siraj Uddin
Level 1
Level 1

‎02-04-2013 09:33 PM

Hi,

you will have to create a nat pool to get the desired result.

sample configuration.

ip nat pool Net31 31.210.x.x 31.210.x.x netmask 255.255.255.240

ip nat inside source list 1 pool Net31 overload


access-list 1 permit 192.168.1.0 0.0.0.255

HTH

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Abzal
Level 7
Level 7

‎02-04-2013 07:03 PM

Hi,

Do you mean Port Forwarding? Still it's not clear what are you trying to achieve.

Hope it will help.

Best regards,
Abzal

Best regards,
Abzal

Go to solution
Syed Siraj Uddin
Level 1
Level 1

‎02-04-2013 09:33 PM

Hi,

you will have to create a nat pool to get the desired result.

sample configuration.

ip nat pool Net31 31.210.x.x 31.210.x.x netmask 255.255.255.240

ip nat inside source list 1 pool Net31 overload


access-list 1 permit 192.168.1.0 0.0.0.255

HTH

0 Helpful

Go to solution
matthewbutt
Level 1
Level 1
In response to Syed Siraj Uddin

‎02-05-2013 04:03 AM

Hi Syed,

Excellent, that worked perfectly! Thank you very much.

Alll the best,

Matthew

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card