Seem to be missing a couple of things.
1. The serial interface is not running IP.
2. Once you NAT the packets and send them on to the next-hop router;
how does the next-hop router & network know to return the packets to
this
router?
Assuming that you are using static routes, and the portion of the config
with the serial
IP was left out; it should work fine.
DaveC
Irwin Lazar wrote:
> I need to turn on NAT in a 2500 running Firewall IOS 11.3. It's been a
year
> since I touched a router, so I wanted to run the config by the group for a
> sanity check. (addresses have been changed to protect the innocent)
>
> Here's what I'm trying to do:
> NAT pool (legal addresses) 203.181.70.65 to 203.181.70.94 (slash /27)
>
> Hosts will get addresses via DHCP in the 192.168.1.0 /24 range
>
> The Inside address 192.168.1.11 should statically translate to
203.181.70.91
> (that is, hosts on the Internet that try to connect to 203.181.70.65 should
> hit the NAT box, where they are redirected to 192.168.1.11)
>
> Here's my config:
> interface e0
> ip address 192.168.1.1 255.255.255.0
> ip nat inside
> ! defines e0 with IP address and inside NAT interface
>
> interface s0
> ip nat outside
>
> ip nat pool overld 203.181.70.65 206.181.70.90 prefix 27
> ip nat inside source list 7 pool overld overload
> access-list 7 permit 192.168.1.0 0.0.0.255
>
> ip nat outside source static 192.16.1.11 203.181.70.91
> ip nat inside source static 203.181.70.91 192.16.1.11
>
> Before I slap this on my router, will it work as intended?
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=425&t=410
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
