Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
589
Views
0
Helpful
2
Replies

static NAT failover

jagannath.cmcltd
Level 1
Level 1

‎04-27-2022 05:41 AM

Dear Sir,

i have one cisco 4300 router. router interface details: GE 0/0/0 , GE 0/0/1 , GE 0/0/2.

SP1:117.197.102.219 255.255.255.248 172.24.159.241

ISP2:202.142.74.74 255.255.255.248 202.142.74.73

My current configuration with one ISP only (i want STATIC NAT FAIL-OVER OVER TWO DIFFERENT ISP. )

I
Router#
Building configuration...


Current configuration : 1904 bytes
!
! Last configuration change at 10:38:59 UTC Wed Apr 27 2022
!
version 16.6
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
no service dhcp
platform qfp utilization monitor load 80
no platform punt-keepalive disable-kernel-core
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-intf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!

!
no aaa new-model
!
!
!
!
!
!
!
!
!
!
!
subscriber templating
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
license udi pid ISR4331/K9 sn FDO2444109U
diagnostic bootup level minimal
spanning-tree extend system-id
!
!
!
!
redundancy
mode none
!
!
!
!
!
!
!
!
interface Loopback0
ip address 117.197.102.219 255.255.255.248
ip nat inside
!
interface GigabitEthernet0/0/0
ip address 192.168.14.1 255.255.255.0
ip nat inside
negotiation auto
!
interface GigabitEthernet0/0/1
ip address 172.24.159.241 255.255.255.252
ip nat outside
negotiation auto
!
interface GigabitEthernet0/0/2
no ip address
shutdown
negotiation auto
!
interface GigabitEthernet0
vrf forwarding Mgmt-intf
no ip address
shutdown
negotiation auto
!
ip nat inside source list 99 interface Loopback0 overload
ip nat inside source list 102 interface Loopback0 overload
ip forward-protocol nd
no ip http server
ip http authentication local
no ip http secure-server
ip tftp source-interface GigabitEthernet0
ip route 0.0.0.0 0.0.0.0 172.24.159.242
ip route 192.168.14.0 255.255.255.0 172.24.159.242
!
!
access-list 99 permit 192.168.14.0 0.0.0.255
!
!
!
!
control-plane
!
!
line con 0
transport input none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
transport input none
line vty 5 15
login
transport input none
!
wsma agent exec
!
wsma agent config
!
wsma agent filesys
!
wsma agent notify
!
!
end

Router#

Labels:
Preview file
34 KB
0 Helpful
2 Replies 2

Larissa H
Level 1
Level 1

‎05-01-2022 12:12 PM

Hey, Jag

 

My first thought was to implement 2 individual static routes to each of your ISPs PE router. From what I found that is the basic idea for your situation. Here is what I found:

 

Source:

https://learningnetwork.cisco.com/s/question/0D53i00000Kt1XYCAZ/nat-failover-with-dual-isp-on-a-router-configuration-example

 

Well done on being multi-homed btw!

 

Hope this helps!

 

larissa

Preview file
240 KB
0 Helpful

Larissa H
Level 1
Level 1
In response to Larissa H

‎05-01-2022 01:09 PM

Jag, remember to implement a floating static route to your backup ISP by
adding a higher than 1 administrative distance in the command.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card