12-03-2021 11:23 PM
Hi all,
is it somehow possible to use the same source-list for several overload nat entries?
Let's say I have this rule at the moment:
ip nat inside source list 199 interface Dialer2 overload
But as I have ~ 100 Dialer interfaces, but only one Internal Subnet, one source list would be enough. But as soon as I want to enter the next rules like:
ip nat inside source list 199 interface Dialer3 overload
The first one gets overwritten.
So the question is, do I have to create one access-list for every rule, even if the content of the list is the same, or is there a better possibility?
This is my access-list:
access-list 199 permit ip 192.168.2.0 0.0.0.255 any
Thanks!
12-04-2021 01:56 AM
Hello,
good question ! I have tried about every available option, to no avail. It definitely looks like you have to create a separate access list for each interface.
Maybe somebody else comes up with some magic trick...
12-04-2021 03:01 AM
never had that requirement before -
how about adding with route map
access-list 199 permit 192.168.2.0 0.0.0.255
route-map NAT_TO_Dialer2
match ip address 199
match interface x/x or Dialer2
route-map NAT_TO_Dialer3
match ip address 199
match interface x/x or Dialer3
ip nat inside source route-map NAT_TO_Dialer2 Dialer2 overload
ip nat inside source route-map NAT_TO_Dialer3 Dialer3 overload
12-04-2021 11:19 AM - edited 12-04-2021 11:19 AM
right way
https://binaryglobal.com/blog/?p=129
12-04-2021 09:00 AM - edited 12-04-2021 09:03 AM
Hello
Yes you can- in fact you would expect to do so if your are using those dual wan links for resilience however if you expect to use both wan links at the same time then you could but it wouldn’t be applicable
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide