Nexus 9K - Conditional NAT

vxlannnn · ‎05-05-2021

Is there a way to perform conditional NAT similar to way its explained in this article https://www.ciscozine.com/using-route-maps-for-conditional-nat/ with the Nexus 9K platform?

It doesn't appear I can use the route-map command on my NAT rules.

Thanks

balaji.bandi · ‎05-05-2021

Nexus is more of Switch, its not like Full blown Router to give all options as expected.

But good nexus do support some NAT Features - but it is limited

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/interfaces/configuration/guide/b_Cisco_Nexus_9000_Series_NX-OS_Interfaces_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-OS_Interfaces_Configuration_Guide_7x_chapter_0110...

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Georg Pauwen · ‎05-05-2021

Hello,

the 'route-map' keyword is not supported (check the link below for the command reference) but you can specify an ACL...not sure what that results in...

So if you take the example from Ciscozine, the corresponding syntax on the Nexus would look like this:

ip access-list extended client-serverweb
permit ip host 172.16.0.5 host 10.0.1.100
ip access-list extended client-serverssh
permit ip host 172.16.0.5 host 192.168.2.100
!
ip nat inside source static 172.16.0.5 172.16.100.5 list client-serverweb
ip nat inside source static 172.16.0.5 172.16.200.5 list client-serverssh

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/93x/command/reference/config/b_N9K_Config_Commands_93x/b_N9K_Config_Commands_93x_chapter_01001.html#wp2248258623