Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2379
Views
5
Helpful
53
Replies

What is the command to NAT a destination network 10.1.1.Z to another network 192.168.1.Z?

getaway51
Level 2
Level 2

‎04-01-2019 07:35 PM

Hi,

 

I am trying to Nat a network 10.1.1.0/24 to another network 192.168.1.0/24. When this happens, the last octets Z should remains (e.g 10.1.1.50 to 192.168.1.50), otherwise packets will be lost. Basically it's a 1-to-1 NAT. May i know whts the steps to do this?

Labels:
0 Helpful
53 Replies 53

getaway51
Level 2
Level 2
In response to paul driver

‎04-11-2019 08:33 AM

Hi Paul,

 

1)Does it means that when someone access 100.100.100.5 in Internal LAN, it will be NAT to 192.168.1.5?

 

2)Also I need to access frm internal to 172.15.1.1/32. Wht would be the cmd like? 

0 Helpful

paul driver
VIP
VIP
In response to getaway51

‎04-12-2019 04:10 AM - edited ‎04-12-2019 07:04 AM

Hello

 

LIke i have said traffic originated from the ISP side will only be able to initiate traffic so...

 

@getaway51 wrote:

Hi Paul,

 

1)Does it means that when someone access 100.100.100.5 in Internal LAN, it will be NAT to 192.168.1.5? -

 

No - it means when someone outside (ISP) trys to  access 10.4.4.x it will get natted to 100.100.100.x for 10.1.1.x

 

 

@getaway51 wrote:

2)Also I need to access frm internal to 172.15.1.1/32. Wht would be the cmd like? 

same as above 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

getaway51
Level 2
Level 2
In response to paul driver

‎04-12-2019 05:00 AM

Hi Paul,

 

The objective would be, someone from Internal 10.1.1.x/24 access HQ Servers LAN (172.15.1.1/32,192.168.1.0/24)

Can you advise how the dummy network (e.g. 100.100.100.0/24)  and host(101.101.101.1/32) in R2 can be use in this case?

Many thanks!! My idea is internal hosts access these dummy networks and hosts which later translated into 172.15.1.1/32,192.168.1.0/24 from inside to outside.

0 Helpful

paul driver
VIP
VIP
In response to getaway51

‎04-14-2019 03:40 AM

Hello

@getaway51 wrote:

Hi Paul,

 

The objective would be, someone from Internal 10.1.1.x/24 access HQ Servers LAN (172.15.1.1/32,192.168.1.0/24)

Can you advise how the dummy network (e.g. 100.100.100.0/24)  and host(101.101.101.1/32) in R2 can be use in this case?

Many thanks!! My idea is internal hosts access these dummy networks and hosts which later translated into 172.15.1.1/32,192.168.1.0/24 from inside to outside.

With the config example provided -Only traffic initiated from isp will allow your internal network to reply back to the isp network using that dummy nat translatied subnet 

this is all due to your current topology - meaning R2 being your only nat router and that router also needing to reach the same subnet 192.168.1.x/24 Internally and externally 

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Waqas Karim (CCIE)
Level 1
Level 1

‎04-10-2019 12:11 PM

Either of the two solutions: 1. ACL + NAT in & out 2. ROUTE MAP + in & out

Regards,
Waqas Karim (CCIE)
0 Helpful

getaway51
Level 2
Level 2
In response to Waqas Karim (CCIE)

‎04-10-2019 06:05 PM

Hi,

 

Thanks for yr feedback . Wht would be the cmds if just one side (internal LAN to HQ servers LAN) initiate traffic?

Also i was wondering how ROUTE MAP is used here? thanks for guidance!!

0 Helpful

paul driver
VIP
VIP
In response to getaway51

‎04-11-2019 03:36 AM

Hello

I have already supplied you with examples for access-lists and route-maps , please review previous posts.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

getaway51
Level 2
Level 2
In response to paul driver

‎04-12-2019 07:49 PM

 

Hi Paul,

 

The objective would be, someone from Internal 10.1.1.x/24 access HQ Servers LAN (172.15.1.1/32,192.168.1.0/24)

Can you advise how the dummy network (e.g. 100.100.100.0/24)  and host(101.101.101.1/32) in R2 can be use in this case?

Many thanks!! My idea is internal hosts access these dummy networks and hosts which later translated into 172.15.1.1/32,192.168.1.0/24 from inside to outside.

INSIDE TO OUTSIDE (ONE DIRECTION)

before- source:10.1.1.6/24 , destination:100.100.100.Y/24

after- source:outside ip , destination:192.168.1.Y/24

 

before- source:10.1.1.7/24 , destination:101.101.101.1/32

after- source:outside ip , destination:172.15.1.1/32

 

 

 

0 Helpful

getaway51
Level 2
Level 2
In response to getaway51

‎04-17-2019 02:19 AM

Hi Paul,

 

The objective would be, someone from Internal 10.1.1.x/24 access HQ Servers LAN (172.15.1.1/32,192.168.1.0/24)

Can you advise how the dummy network (e.g. 100.100.100.0/24)  and host(101.101.101.1/32) in R2 can be use in this case?

Many thanks!! My idea is internal hosts access these dummy networks and hosts which later translated into 172.15.1.1/32,192.168.1.0/24 from inside to outside.

INSIDE TO OUTSIDE (ONE DIRECTION)

before- source:10.1.1.6/24 , destination:100.100.100.Y/24

after- source:outside ip , destination:192.168.1.Y/24

 

before- source:10.1.1.7/24 , destination:101.101.101.1/32

after- source:outside ip , destination:172.15.1.1/32

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card