Ravi Singh,
Thanks for the sample but I still have some worries.
it is clear to me that if I am on R0 and do
R0#ping 172.16.1.1 it should be successful.
Now what about a host behind R0 that want to reach a host
behind R1.
For example if host A behind R0 and host B behind R1 are on
VLAN 1 and want
to communicate.
Host A address is 10.1.1.3 and Host B address is 10.1.1.4
If sitting at A I do ping 10.1.1.4, how will R0 know that
10.1.1.4 belongs
to a host behind R1 ? Remember the NAT at R1 is changing
10.1.1.4 to another
address say 172.16.1.4.
So I am thinking a default route of
ip 0.0.0.0 0.0.0.0 tunnel0 will be a solution
Is there something I am mixing up or what will the
disadvantage of using a
static route?
Ravi Singh wrote:
>
> Hi Gilbert,
>
> Translate your Site A VLAN IP Addresses to another
subnet of IP
> addresses which does not exist in Site B and similarly
Site B
> IP addresses to a subnet which does not exist in Site
A.I have
> hurriedly configured this with a very basic setup and
below
> are the configs which can help you.
>
> Router R0 is connected to R1 through Serial 1/0
interfaces and
> the fastethernet 0/0 on both routers connects to the
Local LAN.
> The config bits are -:
>
> hostname R0
> !
> interface Tunnel0
> ip address 1.1.1.1 255.255.255.0
> ip nat outside
> tunnel source Serial1/0
> tunnel destination 192.168.1.2
> !
> interface FastEthernet0/0
> ip address 10.1.1.2 255.255.255.0
> ip nat inside
> duplex full
> !
> interface Serial1/0
> ip address 192.168.1.1 255.255.255.0
> !
> ip nat inside source static 10.1.1.2 192.168.100.2
extendable
> !
> ip route 172.16.1.0 255.255.255.0 Tunnel0
>
> Router R1
> hostname R1
> !
> interface Tunnel0
> ip address 1.1.1.2 255.255.255.0
> ip nat outside
> tunnel source Serial1/0
> tunnel destination 192.168.1.1
> !
> interface FastEthernet0/0
> ip address 10.1.1.1 255.255.255.0
> ip nat inside
> !
> interface Serial1/0
> ip address 192.168.1.2 255.255.255.0
> !
> ip nat inside source static 10.1.1.1 172.16.1.1
extendable
> ip route 192.168.100.0 255.255.255.0 Tunnel0
>
> R0#ping 172.16.1.1
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 172.16.1.1, timeout
is 2
> seconds:
> !!!!!
> Success rate is 100 percent (5/5), round-trip
min/avg/max =
> 24/68/104 ms
> R1#ping 192.168.100.2
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 192.168.100.2,
timeout is 2
> seconds:
> !!!!!
> Success rate is 100 percent (5/5), round-trip
min/avg/max =
> 8/48/88 ms
>
> I hope you would be able to find out how you can
configure NAT
> in your case as I have only configured static NAT for
one IP
> Address. You would have to use a NAT pool in your case,
since
> there would be a series of IP addresses for you.
>
> Hope this helps !!!
>
> Cheers,
> Ravi
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7
&i=131048&t=131026
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.
groupstudy.com/list/cisco.html
|