Pages

Wednesday, May 4, 2011

Nat Extendable option

From http://www.cisco.com/en/US/technologies/tk648/tk361/tk438/technologies_white_paper09186a0080091cb9.html


The extendable keyword allows the user to configure several ambiguous static translations, where an ambiguous translations are translations with the same local or global address.


ip nat inside source static <localaddr> <globaladdr> extendable


Example


Telnet and SSH traffic will be redirected to 192.10.112 port 22 and 23 respectively.
192.10.1.0/24  = inside
204.12.1.0/24  = outside
54.1.8.0/24     =  outside
Because we have more than 1 outside interface, it might have some ambiguous translation. Therefore, we need option "extendable" in the NAT commands.

ip nat inside source static tcp 192.10.1.112 22 54.1.8.6 22 extendable 
ip nat inside source static tcp 192.10.1.112 23 54.1.8.6 23 extendable 
ip nat inside source static tcp 192.10.1.112 22 204.12.1.6 22  extendable 
ip nat inside source static tcp 192.10.1.112 23 204.12.1.6 23 extendable 





No comments:

Post a Comment