Hi, http://www.cisco.com/warp/public/556/nat-faq.html#Q13 (including Q14) describes the functionality when using multiple addresses in an overload. As MADMAN says, it4s kind of arbitrary.
Some colleagues of mine tried to NAT/PAT in the same way that You want about a year ago, but unfortunately the did not find a solution. They ended up with a PIX instead. I don4t think it is possible. Dan > MADMAN wrote: > Add the command overload: > > ip nat inside source list 1 pool NATPOOL overload > > but like I mentioned earlier this does not mean IOS will use NAT until > the last address is used, it seems rather arbitrary wheras > the PIX will > use all the NAT address before using PAT. > > Dave > > > trammer wrote: > > > > Kind of, > > > > ip nat pool NATPOOL 192.168.1.10 192.168.1.20 netmask 255.255.255.0 > > ip nat inside source list 1 pool NATPOOL > > > > ip access-list 1 permit 10.1.0.0 0.0.255.255 > > > > Where would one go from here to have the NAT pool of 1.10 > to 1.20 utilized > > and also PAT if every address is used from the pool. > > > > The nat inside source list defines which addresses can be > nated from the > > pool. Another form of the command is with the overload > statement as you > > mentioned. But if I enter this it will only PAT through > the first address > > in the pool in testing (192.168.1.10. I can't determine > if it would use > > the next address in the pool because of the use of numerous ports. > > > > Will it just dynamically choose from the pool as if they are all PAT > > addresses? If this is the case then it sounds like in the > situation I am > > trying to address I would be best off defining a static NAT > mapping from > the > > pool to the outside for the specific hosts that I want, and > let the rest > > PAT. > > > > Hopefully this makes sense. > > > > -Adam > > > > ""MADMAN"" wrote in message > > news:200210241940.TAA32116@;groupstudy.com... > > > do you mean: > > > > > > C2620B(config)#ip nat inside source list 1 pool MADMAN overload > > > > > > Dave > > > > > > trammer wrote: > > > > > > > > Dave, > > > > > > > > Can you post an example. Is the syntax different then what I am > > thinking. > > > > > > > > thnx > > > > > > > > ""MADMAN"" wrote in message > > > > news:200210241606.QAA03297@;groupstudy.com... > > > > > Use the overload command though unlike the PIX when > you overload, > > > > > (PAT) on a router it's kinda arbitrary. Some > connection will use NAT > > > > > and others will PAT, it does not wait until the last > address in the > > pool > > > > > is used before converting to PAT. > > > > > > > > > > Dave > > > > > > > > > > trammer wrote: > > > > > > > > > > > > Hello, > > > > > > > > > > > > Quick question that I am having trouble locating > the answer on. > > > > > > > > > > > > Basically I need to know whether you can configure > PAT to work in > > > > > > conjunction with a NAT pool on an IOS router. > 12.2.x on 2621? > > > > > > > > > > > > Ex. Nat pool of 192.168.1.10-192.168.1.20 Once > all nat pool IPs > > are > > > > > > taken. Roll to a PAT on say 192.168.1.21. > > > > > > > > > > > > Naturally I would think this is possible, but then > again I could be > > > > wrong. > > > > > > > > > > > > I know this is possible on the PIX but cannot find > specifics for an > > IOS > > > > > > router configuration. > > > > > > > > > > > > Thanks. > > > > > > > > > > > > Cheers > > > > > -- > > > > > David Madland > > > > > CCIE# 2016 > > > > > Sr. Network Engineer > > > > > Qwest Communications > > > > > 612-664-3367 > > > > > > > > > > "You don't make the poor richer by making the rich > poorer." --Winston > > > > > Churchill > > > -- > > > David Madland > > > CCIE# 2016 > > > Sr. Network Engineer > > > Qwest Communications > > > 612-664-3367 > > > > > > "You don't make the poor richer by making the rich > poorer." --Winston > > > Churchill > -- > David Madland > CCIE# 2016 > Sr. Network Engineer > Qwest Communications > 612-664-3367 > > "You don't make the poor richer by making the rich poorer." --Winston > Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=56354&t=56208 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
