Hello.This won't work, as you

asbesi001 · ‎08-07-2014

Hi,

I have a question regarding NAT.
Is it possible to apply two NAT rules, if yes, will it increase CPU utilization, have you applied in real traffic?
My scenario is simple. I have two ISP connections, and I want using nat to route traffic for a particular subnet through first isp, and other subnet through second isp.

For example:

!
ip nat inside source list 10 interface FastEthernet0/0 overload
ip nat inside source list 20 interface FastEthernet0/1 overload
!
access-list 10 permit ip host 192.168.10.100 any
access-list 10 deny ip any any
!
access-list 20 deny ip host 192.168.10.100 any
access-list 20 permit ip 192.168.10.0 0.0.0.255 any
access-list 20 deny ip any any
!

Hope it is clear!

Regards,
Brj

Vasilii Mikhailovskii · ‎08-09-2014

Hello.

This won't work, as you need to make routing first.

In your case, I would suggest to read http://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/100658-ios-nat-load-balancing-2isp.html

Instead of load-balance (like on the article) you need to run PBR on inside interface.

asbesi001 · ‎08-14-2014

Hi Vasilii,

Thnx for the reply!

PBR has a quite big impact on CPU, and it's not my preferred way. Is there any way to achieve this?

Regards,

-brj.

Vasilii Mikhailovskii · ‎08-14-2014

Hello.

Please share the details of your hardware and link bandwidth, so we could estimate the impact.

Could you please clarify what is the business driver for your case?

NAT rules

Translation Rule

Azure vFTD NAT rule

Access Policy Rules API is now available!

Firepower - hairpin/reflected NAT rule

Static NAT の設定例