Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
602
Views
5
Helpful
4
Replies

Question on overlap-IP range within organization

Go to solution
news2010a
Level 3
Level 3

‎05-16-2007 01:15 PM - edited ‎03-03-2019 05:00 PM

Imagine my internal network-organization operates using IP=192.168.1.0/24.

Imagine I have a Department-in-another-corner-of-theworld using private address range 10.0.0.0/8.

Then My-Department-US has some hardcoded devices which require IP address in the range 10.0.0.0/8 in order to operate. Such devices should be placed behind a layer 3 device (router or switch) in order to contain broadcast traffics anyway.

That said, if I let this My-Department-US connect OK on 10.0.0.8/24 and I do #ip nat inside and I translate all inside local addresses on 10.0.0.8/24 using an 'inside global' 192.168.1.0/24 do you see any technical or practical issue in which I should prevent them from using such 10.0.0.0/24 behind this layer 3 device? Just because that IP address range 10.0.0.0/24 conflicts with the Department-inanother-corner-oftheworld that should not be a technical or practical issue to prevent this? Am I right?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
sundar.palaniappan
Level 10
Level 10
In response to mohammedmahmoud

‎05-16-2007 01:56 PM

It may or mayn't create problems and that depends on lot of factors. It's very hard to give a correct answer without knowing the whole topology and who is initiating the traffic etc. But, to be sure that you don't run into problems you would want NAT the users on both sides and ensure you have routes to get to the NAT IP range from the remote routers.

HTH

Sundar

View solution in original post

0 Helpful
4 Replies 4

Go to solution
mohammedmahmoud
Level 11
Level 11

‎05-16-2007 01:26 PM

Hi,

Kindly check this document:

Using NAT in Overlapping Networks

http://www.cisco.com/warp/public/556/3.html

HTH, please do rate all helpful replies,

Mohammed Mahmoud.

0 Helpful

Go to solution
sundar.palaniappan
Level 10
Level 10
In response to mohammedmahmoud

‎05-16-2007 01:56 PM

It may or mayn't create problems and that depends on lot of factors. It's very hard to give a correct answer without knowing the whole topology and who is initiating the traffic etc. But, to be sure that you don't run into problems you would want NAT the users on both sides and ensure you have routes to get to the NAT IP range from the remote routers.

HTH

Sundar

0 Helpful

Go to solution
paulnigel
Level 1
Level 1
In response to sundar.palaniappan

‎08-06-2007 09:22 PM

hi Sundar,

how do you configure the route to point to the NATed range of IP? if I am using EIGRP, can I just add the NATed range into the EIGRP?

Thanks much,

pn

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to paulnigel

‎08-06-2007 10:19 PM

Hi Pn

Yes, that is exactly what you do. You can add a route for the Natted address range and redistribute it into EIGRP.

Jon

Customers Also Viewed These Support Documents