Wireless Access

Reply
Occasional Contributor II
Posts: 17
Registered: ‎05-17-2012

S2500-24P - NAT Overload

Hi all,

 

How can we create nat overload on a Aruba switch so it will also act as a uplink router to the ISP internet device?  This switch will also provide poe and dhcp for IAPs.

 

The design is for a guest internet hot spot.

 

Aruba
Posts: 429
Registered: ‎05-30-2012

Re: S2500-24P - NAT Overload

You can add "ip nat inside" to the inner VLAN that the IAPs are attached to. Out of curiosity, why isn't the ISP Internet Device providing NAT?

Occasional Contributor II
Posts: 17
Registered: ‎05-17-2012

Re: S2500-24P - NAT Overload

Hi,

 

Thanks for the reply :)

 

The ISP managed internet device address is 207.x.x.x and it sounds like it will need natting as it may not be a layer 3 switch.

 

So you do not need any ip nat outside, etc?

 

In the mean time we have a test ADSLcircuit that we were trying to get working with nat overload with no luck.  It gives out a static IP via DHCP when you register a MAC address.  On Cisco routers they have a command ip address DHCP under the interface which also has the ip nat outside.  How can you do this on the Aruba switch?

 

Thank you

 

Guru Elite
Posts: 8,639
Registered: ‎09-08-2010

Re: S2500-24P - NAT Overload

Create a VLAN interface for your outside ISP connection, then create your inside VLAN interface(s) and issue the ip nat inside command on that interface(s). Any traffic that you route from the inside interface(s) out to the ISP will be source-NAT'ed using the "outside" VLAN interfaces IP address.

 

You can use show datapath vlan to verify that NAT is enabled for the interface. Look for the N flag.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Aruba
Posts: 429
Registered: ‎05-30-2012

Re: S2500-24P - NAT Overload

And to answer your question about the Internet facing side, you can do the following to configure the Internet facing interface VLAN to use DHCP.

 

!

ip-profile
   default-gateway import dhcp
!
interface vlan "1"
   ip address dhcp-client
!

Occasional Contributor II
Posts: 17
Registered: ‎05-17-2012

Re: S2500-24P - NAT Overload

Thanks Guys!!!

 

It worked great on a ADSL lab circuit.

Search Airheads
Showing results for 
Search instead for 
Did you mean: