Posts in 2013
-
Configuring the DHCP Server
Monday, November 11, 2013 in Cisco Networking
Using the DHCP Pool configured on a IOS device is somewhat obsolete, but in cases of smaller companies where this solution is inevitable (or in a case such as mine, preparations for a CCIE exam) - you should know how to configure a full DSCP on a …
-
Scalability for Stateful NAT (SNAT)
Thursday, November 07, 2013 in Cisco Networking
Scalability for Stateful NAT feature allows Stateful Network Address Translation (SNAT) to control the Hot Standby Router Protocol (HSRP) state change until the NAT information is completely exchanged. Reference: …
-
Static NAT redundancy with HSRP
Thursday, November 07, 2013 in Cisco Networking
This approach is used when you want to configure NAT and integrate it with HSRP (enable the same NAT on all the routers that form the HSRP group). In order to do this, it’s necessary to NAME each of the HSRP groups: Step 1: Name the already …
-
PAR - When you need to implement traffic redirections using NAT
Wednesday, November 06, 2013 in Cisco Networking
You can define the traffic redirection using Static Entries, but there is a trick. For example you want all the http traffic DESTINED FOR s0/0.5 to be REDIRECTED to the IP 10.1.123.3 instead. You can configure this by defining the static NAT: …
-
PAT (NAT Overload)
Tuesday, November 05, 2013 in Cisco Networking
Port Address Translation (PAT) means using PORTS in order to NAT various Inside Local IPs to 1 Inside Global IP. Step 1: Create an ACL with all the Inside Local addresses: (config)#access-list 1 permit 10.2.2.0 0.0.0.7 Step 2: There are 2 ways to …
-
Load Balancing using NAT
Tuesday, November 05, 2013 in Cisco Networking
This is a configuration that I´ve never implemented in any production environment, but I see quite a few cases where it can be usefull. Step 1: Create a POOL of all the INSIDE IPs, and define the pool type: “type rotary”: (config)#ip nat …
-
NAT - Dynamic NAT
Tuesday, October 29, 2013 in Cisco Networking
1 - Define the POOL of the DESTINATION IPs (Public) (config)#ip nat pool DESTIN 131.1.12.3 131.1.12.8 prefix-length 24 2 - Define the ACCESS-LIST of the PRIVATE IPs (config)#access-list 1 permit 10.2.2.0 0.0.0.255 3- Implement the NAT …
-
NAT - Static NAT
Tuesday, October 29, 2013 in Cisco Networking
You can do STATIC NAT and just “go out” of the router with a different IP address: *Traffic sourced from 10.2.2.1 will seem from 131.1.12.3 *Extendable is used if you need 1 LOCAL IP to be mapped to Various Public IPs (config)#ip nat …
-
Is SDN really the future?
Thursday, October 24, 2013 in Playing Smart
For all the Network Engineers out there who, like myself, scream inside whenever someone confidently declares that SDN is the future - Don´t panic… But DO consider expanding your skill set with a bit of Scripting/ Process Automation and …
-
Configure SSH Access
Wednesday, September 25, 2013 in Cisco Networking
Cisco Documents: Security>AAA>Secure Shell Configuration Guide http://www.cisco.com/en/US/docs/ios-xml/ios/sec_usr_ssh/configuration/12-4t/sec-cfg-secure-shell.html First step would be to make sure that all the devices within your network …