RSS

Posts in 2013

  • HSRP - Configure the Hot Standby Routing Protocol

    Wednesday, November 13, 2013 in Cisco Networking

    Redundancy Protocol, Cisco Proprietary. Configuration is quite straight-forward, but there are many ways to tune it, in accordance with your needs: interface FastEthernet0/0 ip address 172.25.25.2 255.255.255.0 standby 1 ip 172.25.25.22 <- Group 1 …

    Read more

  • Configuring the DHCP Server

    Monday, November 11, 2013 in Cisco Networking

    Using the DHCP Pool configured on a IOS device is somewhat obsolete, but in cases of smaller companies where this solution is inevitable (or in a case such as mine, preparations for a CCIE exam) - you should know how to configure a full DSCP on a …

    Read more

  • Scalability for Stateful NAT (SNAT)

    Thursday, November 07, 2013 in Cisco Networking

    Scalability for Stateful NAT feature allows Stateful Network Address Translation (SNAT) to control the Hot Standby Router Protocol (HSRP) state change until the NAT information is completely exchanged. Reference: …

    Read more

  • Static NAT redundancy with HSRP

    Thursday, November 07, 2013 in Cisco Networking

    This approach is used when you want to configure NAT and integrate it with HSRP (enable the same NAT on all the routers that form the HSRP group). In order to do this, it’s necessary to NAME each of the HSRP groups: Step 1: Name the already …

    Read more

  • PAR - When you need to implement traffic redirections using NAT

    Wednesday, November 06, 2013 in Cisco Networking

    You can define the traffic redirection using Static Entries, but there is a trick. For example you want all the http traffic DESTINED FOR s0/0.5 to be REDIRECTED to the IP 10.1.123.3 instead. You can configure this by defining the static NAT: …

    Read more

  • PAT (NAT Overload)

    Tuesday, November 05, 2013 in Cisco Networking

    Port Address Translation (PAT) means using PORTS in order to NAT various Inside Local IPs to 1 Inside Global IP. Step 1: Create an ACL with all the Inside Local addresses: (config)#access-list 1 permit 10.2.2.0 0.0.0.7 Step 2: There are 2 ways to …

    Read more

  • Load Balancing using NAT

    Tuesday, November 05, 2013 in Cisco Networking

    This is a configuration that I´ve never implemented in any production environment, but I see quite a few cases where it can be usefull. Step 1: Create a POOL of all the INSIDE IPs, and define the pool type: “type rotary”: (config)#ip nat …

    Read more

  • NAT - Dynamic NAT

    Tuesday, October 29, 2013 in Cisco Networking

    1 - Define the POOL of the DESTINATION IPs (Public) (config)#ip nat pool DESTIN 131.1.12.3 131.1.12.8 prefix-length 24 2 - Define the ACCESS-LIST of the PRIVATE IPs (config)#access-list 1 permit 10.2.2.0 0.0.0.255 3- Implement the NAT …

    Read more

  • NAT - Static NAT

    Tuesday, October 29, 2013 in Cisco Networking

    You can do STATIC NAT and just “go out” of the router with a different IP address: *Traffic sourced from 10.2.2.1 will seem from 131.1.12.3 *Extendable is used if you need 1 LOCAL IP to be mapped to Various Public IPs (config)#ip nat …

    Read more

  • Configure SSH Access

    Wednesday, September 25, 2013 in Cisco Networking

    Cisco Documents: Security>AAA>Secure Shell Configuration Guide http://www.cisco.com/en/US/docs/ios-xml/ios/sec_usr_ssh/configuration/12-4t/sec-cfg-secure-shell.html First step would be to make sure that all the devices within your network …

    Read more