Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1386
Views
0
Helpful
2
Replies

NAT and PAT on vEdge

rhyli
Level 1
Level 1

‎04-15-2019 09:07 PM

I am new to Cisco SD WAN, I do the static NAT and PAT for one of my servers and a PC but it does not work. There is a firewall NAT a public IP to the Edge.

 

Firewall -------------------------- vEdge  ------------------------------------ LAN

Public IP                       192.168.0.2/24                             192.168.140.0/24                                  

 

vpn 0

dns 8.8.4.4 primary

dns 8.8.8.8 secondary

interface ge0/0 ip address 192.168.0.100/24

nat

port-forward port-start 3389 port-end 3389 proto tcp private-vpn 0 private-ip-address 192.168.140.2

 

I try to follow the document to do it but no succeed.

https://sdwan-docs.cisco.com/Product_Documentation/Software_Features/Release_18.3/07Policy_Applications/04Using_a_vEdge_Router_as_a_NAT_Device/Service-Side_NAT_Configuration_Example

Labels:
0 Helpful
2 Replies 2

ekhabaro
Cisco Employee
Cisco Employee

‎04-16-2019 12:54 PM

You LAN interface is in service side and most likely in a separate VPN (e.g. 1). VPN 0 in opposite is transport VPN. So I assume you have an error in your configuration. Your private-vpn should be service VPN (e.g. 1..511) where 192.168.140.0/24 subnet resides.
0 Helpful

Simon Ko
Level 1
Level 1

‎05-10-2019 06:55 AM

Seems that what you are missing is one statement.

On service side of vpn, let's say vpn1, add following statement

 

vpn 1

 

ip route 0.0.0.0/0 vpn 0

 

I know this works.

 

0 Helpful
Customers Also Viewed These Support Documents