Wireless Access

Reply
Super Contributor II

IP NAT

Dear Friends.

 

I need to configure IP Nat. Is there any document available that can help me to configure natting.. i  tried to find it in OS guide but unfortunately i was not able to understand that... Thanks in advance

Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA

Re: IP NAT

There's lots of ways. NAT pools, rules in firewall policies, interface settings etc. Depends on what you need from NAT.

 

The simplest way by far...

 

Have the controller as the router for a VLAN, and put IP NAT INSIDE on the IP interface.

 

Does that do what you need?

Kudos appreciated, but I'm not hunting! (ACMX 104)

Re: IP NAT

Contact me via skype/e-mail and i will assist you remotely to config and deploy the right NAT configuration.

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
Super Contributor II

Re: IP NAT

interface vlan 10
ip address x.x.x.x 255.255.224.0 (Public IP)

interface vlan 1
ip address 192.168.2.1 255.255.255.0 (management VLAN)


interface vlan 3
ip address 10.10.0.1 255.255.255.0 (User VLAN)
ip nat inside


ip default-gateway x.x.x.x (Public IP of VLAN 10 Pool)

 I want to nat all the traffic from VLAN 3 to the IP Address of VLAN 10.
how can i congigure that.

Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA

Re: IP NAT

You already did! You should be done.

 

You achieved it by using the "ip nat inside" command on VLAN 3.

 

Is it doing what you want? Did you test it?

 

Kudos appreciated, but I'm not hunting! (ACMX 104)
Super Contributor II

Re: IP NAT

Yes... it is working fine :-)

It translating all of my guest users to single IP. how can i translate to multiple Ip's. i mean how can i configure destination nat pool instead of single vlan 10 ip ??
Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA

Re: IP NAT

You can translate to multiple IPs by using a NAT pool.

 

For a simple way of doing that, it's a 2 step process.

 

1. Configure a NAT pool.

2. Configure the rules in your user role ACLs to NAT to that pool.

 

For example....

 

ip NAT pool my-nat-pool 1.1.1.1 1.1.1.10

!

ip access-list session nat-to-my-nat-pool

user any any src-nat pool my-nat-pool

!

user-role natted-user

session-acl nat-to-my-nat-pool

!

 

Of course, if your user role has more rules, it might be more complex!

Kudos appreciated, but I'm not hunting! (ACMX 104)
Super Contributor II

Re: IP NAT

Thank you so much dear

This is exactly what i was looking for...
Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA
Contributor I

Re: IP NAT

I have a similar "issue". How does the ip nat inside command know to translate from IPs on VLAN 3 to the 1 IP on VLAN 10?

 

Also how could I see a translation table? I assume the mechanism must be PAT if you are going from many IPs to 1 IP but I am not sure how to see that in the config.

 

Thanks.

Re: IP NAT

with nat inside it will NAT the traffic to the outgoing interface IP, so if your traffic goes outside via VLAN 10 it will take that IP.

 

as for the table, i believe: show datapath session table should help

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: