cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Community Helping Community

187
Views
0
Helpful
0
Replies
Highlighted
Beginner

Problems with nat44. Router-originated packets not translated

Hi,


Have anyone experienced any problems with router-originated icmp/tcp/udp flow NAT'ing on ASR9k?

The thing is, that we are unable to ping any public IP from ASR, using NAT. Routing is fine. No access-lists.

RP/0/RSP0/CPU0:ASR-4#ping vrf insideVRF 8.8.8.8 source 192.168.1.1
Thu Mar 12 10:56:43.866 EET
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
RP/0/RSP0/CPU0:ASR-4#sh cgn nat44 CGN1_NAT1 inside-translation protocol icmp inside-vrf insideVRF inside-address 192.168.1.1 port start 1 end 65535
Thu Mar 12 10:57:06.311 EET
Inside-translation details
---------------------------
NAT44 instance : CGN1_NAT1
Inside-VRF     : insideVRF
--------------------------------------------------------------------------------------------
   Outside         Protocol  Inside       Outside       Translation   Inside      Outside
   Address                   Source       Source        Type          to          to
                             Port         Port                        Outside     Inside
                                                                      Packets     Packets
--------------------------------------------------------------------------------------------


=====No Data Found========

But, when we put PC in the 192.168.1.0/30 network, CGN translates packets perfectly.

RP/0/RSP0/CPU0:ASR-4#sh cgn nat44 CGN1_NAT1 inside-translation protocol icmp inside-vrf insideVRF inside-address 192.168.1.2 port start 1 end 65535
Thu Mar 12 10:54:05.789 EET
Inside-translation details
---------------------------
NAT44 instance : CGN1_NAT1
Inside-VRF     : insideVRF
--------------------------------------------------------------------------------------------
   Outside         Protocol  Inside       Outside       Translation   Inside      Outside
   Address                   Source       Source        Type          to          to
                             Port         Port                        Outside     Inside
                                                                      Packets     Packets
--------------------------------------------------------------------------------------------
  2XX.YZ.105.54      icmp    1            13082         dynamic       154         154
 

I've found some bug, but it differs a bit from my case, since it is related to MAP-T

https://tools.cisco.com/bugsearch/bug/CSCur77545/?referring_site=bugquickviewclick

Everyone's tags (4)
CreatePlease to create content
Content for Community-Ad
FusionCharts will render here