Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
654
Views
0
Helpful
2
Replies

ISM configuration

Go to solution
Vladimir Pisarenko
Level 1
Level 1

‎09-16-2013 12:02 AM

Hi all!

I have an ISM module and try to use it in our border ASR9000.

vrf insidevrf1

address-family ipv4 unicast

!

!

vrf outsidevrf1

address-family ipv4 unicast

!

hw-module service cgn location 0/7/CPU0

interface GigabitEthernet0/0/0/0

vrf insidevrf1

ipv4 address 10.10.1.1/30

interface ServiceApp1

vrf insidevrf1

ipv4 address 10.111.10.1 255.255.255.0

service cgn CGN1 service-type nat44

!

interface ServiceApp2

vrf outsidevrf1

ipv4 address 10.111.20.1 255.255.255.0

service cgn CGN1 service-type nat44

!

interface ServiceInfra1

ipv4 address 10.1.1.1 255.255.255.252

service-location 0/7/CPU0

router static

address-family ipv4 unicast

x.x.x.x/29 vrf outsidevrf1 ServiceApp2

!

vrf insidevrf1

  address-family ipv4 unicast

   0.0.0.0/0 ServiceApp1

  10.253.0.0/16 10.10.1.2

  !

!

vrf outsidevrf1

  address-family ipv4 unicast

  x.x.x.x/29 ServiceApp2

service cgn CGN1

service-location preferred-active 0/7/CPU0

service-type nat44 NAT1

  alg ActiveFTP

  inside-vrf insidevrf1

   map outside-vrf outsidevrf1 address-pool x.x.x.x/29

  !

!

!

end

In this router BGP is configured too. All BGP routes and interfaces are in vrf default.

And the question. How can I route 0.0.0.0/0 from vrf outsidevrf1 to vrf default?

I can't put any interface in outsidevrf1 because on all interfaces is traffic without NAT too.

If I will create a BVI in vrf default with IP address and will make a static route in it like this:

router static

vrf outsidevrf1

  address-family ipv4 unicast

0.0.0.0/0 vrf default BVI1122

Will this work?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
asad747
Level 1
Level 1

‎09-16-2013 03:51 AM

It is not mandatory to create outside vrf , you can directly map outsideserviceapp interface in your CGN configuration which will than do the Global Table lookup for default route.

for exmaple;

service cgn myCGNService

service-location preferred-active 0/2/CPU0

service-type nat44 nat44

  inside-vrf lan-nat-users

   map outsideServiceApp ServiceApp2 address-pool 225.1.1.1/24

View solution in original post

0 Helpful
2 Replies 2

Go to solution
asad747
Level 1
Level 1

‎09-16-2013 03:51 AM

It is not mandatory to create outside vrf , you can directly map outsideserviceapp interface in your CGN configuration which will than do the Global Table lookup for default route.

for exmaple;

service cgn myCGNService

service-location preferred-active 0/2/CPU0

service-type nat44 nat44

  inside-vrf lan-nat-users

   map outsideServiceApp ServiceApp2 address-pool 225.1.1.1/24

0 Helpful

Go to solution
Vladimir Pisarenko
Level 1
Level 1
In response to asad747

‎09-16-2013 04:30 AM

Thank you!

It's a really great solution!

0 Helpful
Customers Also Viewed These Support Documents