Velocity Reviews - Computer Hardware Reviews
Home Forums Reviews Guides Newsgroups Register Search
Member Login:

Velocity Reviews > Newsgroups > Computing > Cisco > NAT: which interfaces to use on 870 series routers ?

Reply
Thread Tools

NAT: which interfaces to use on 870 series routers ?

 
 
JF Mezei
Guest
Posts: n/a
 
      10-14-2010
A while back, I posted about a problem of 2 wi-fi devices unable to talk
to each other and wi-fi unable to reach a particular host on the wired
lan, and that those were sporadic problems.

I *think* am an narrowing down the problem to NAT. I put a NAT timeout
of 1 hour instead of the default 24 hours. I suspect that Bittorrent
usage tended to load the NAT tables quite a bit. This seems to have
alleviated the problem, but not fixed it.

So now, i am looking at a sanity check for my setup which works, but
which may not be "right".

In the NAT section:

ip nat translation timeout 3600
ip nat pool natpool1 10.0.0.0 10.0.255.255 netmask 255.255.0.0
ip nat inside source list 23 interface Dialer1 overload
ip nat inside source static tcp 10.0.0.20 23 interface Dialer1 23
ip nat inside source static tcp 10.0.0.21 25 interface Dialer1 25
ip nat inside source static tcp 10.0.0.22 80 interface Dialer1 80
etc

QESTION: Since there is only one external IP address that gets directed
to a couple of hosts on the LAN depending on port, do I need the
ip nat pool statement ?

I originally put it in there because various examples on the net had
such a statement there. From what I read, the "overload" is what really
specifies I want PAT.

------------------------------------


interface Dialer1
description PPPoE to Modem
ip address negotiated
ip access-group ACLinbound in
ip access-group ACLoutbound out
ip mtu 1492
ip nat outside
etc


interface BVI10
ip address 10.0.0.1 255.255.0.0
ip nat inside
ip virtual-reassembly

QUESTION: Since the BVI10 interface also ties in the wi-fi interface, is
this the right interface to which one applies the "ip nat inside"
statement ?

When a Wi-Fi device sends packets to a LAN device, it passes through the
BVI10 device. Would the IP NAT INSIDE interfere with this bridging
function ? Or is the BVI device smart enough to ignore routing functions
when the source and destination IPs are in the same subnet ?

is it the ip-nat-inside and ip-nat-outside which create the link between
the dialer1 and the BVI10 devices ?


My internal lan is in the 10.0/16 subnet for both the wi-fi and wired
LAN. (there are a couple of other subnets but they don't matter in this
case)
 
Reply With Quote
 
 
 
Reply

« TCP connections slow to 1 packet, every 120 seconds | Excellent website for CISCO professionals »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Wireless bridge (870-870 or 870 - WAP54G) AM Cisco 0 01-20-2007 11:52 AM
Trunking on a 870 series. AM Cisco 0 11-22-2006 04:15 PM
802.11i for Cisco 870 routers Lionel Fourquaux Cisco 2 12-29-2005 06:30 PM
870 series dt1649651@yahoo.com Cisco 7 06-12-2005 01:38 AM
Q: 802.1q support on 4000 series routers - can it run over the Ethernet interfaces or must it go via Fa ? Voitec Cisco 2 03-20-2005 09:39 AM



Advertisments
 


Powered by vBulletin®. Copyright ©2000 - 2013, vBulletin Solutions, Inc..
SEO by vBSEO ©2010, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57