asked on
Cisco 1841 router
2 WAN connections (t1, cable)
s0 - t1
fa0/0 - inside (66.x.y.z, 192.168.97.1 secondary)
fa0/1 - cable (24.x.y.z)
I have a secondary ip on fa0/0: 192.168.97.1
On the firewall hanging off the inside which also has a secondary ip of 192.168.79.2.
I am NAT'ing some traffic from inside the firewall to 192.168.97.2.
I need to NAT that traffic to fa0/1 (cable).
I have:
ip nat inside source list 101 interface fa0/1 overload
access-list 101 permit ip 192.168.79.0 0.0.0.255 any
access-list 101 permit ip any 192.178.79.0 0.0.0.255
i also put an acl on the fa0/0 interface so i can see hits from 192.168.79.2 coming in. The 101 acl shows no hits though.
I wonder if it has to do with that secondary IP on fa0/0.
Help?
2 WAN connections (t1, cable)
s0 - t1
fa0/0 - inside (66.x.y.z, 192.168.97.1 secondary)
fa0/1 - cable (24.x.y.z)
I have a secondary ip on fa0/0: 192.168.97.1
On the firewall hanging off the inside which also has a secondary ip of 192.168.79.2.
I am NAT'ing some traffic from inside the firewall to 192.168.97.2.
I need to NAT that traffic to fa0/1 (cable).
I have:
ip nat inside source list 101 interface fa0/1 overload
access-list 101 permit ip 192.168.79.0 0.0.0.255 any
access-list 101 permit ip any 192.178.79.0 0.0.0.255
i also put an acl on the fa0/0 interface so i can see hits from 192.168.79.2 coming in. The 101 acl shows no hits though.
I wonder if it has to do with that secondary IP on fa0/0.
Help?
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 6 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.