Question:
i have two DSL lines and i WS-C3560X-24T-L m
configured route map NAT-TO-101 to specify address which use Line 1
and route map NAT-TO-102 to use line 2 and
everything is working fine .
but now i want to configure failover for
both lines so i suggest to do this
route-map redirect permit 10
match ip address To-101
set interface Dialer1 Dialer2
!
route-map redirect permit 20
match ip address To-102
set interface Dialer2 Dialer1
but i dunno what to do with the NAT rules ?
if i change NAT rules
ip nat inside source route-map NAT-To-101
interface Dialer1 overload
ip nat inside source route-map NAT-To-102
interface Dialer2 overload
ip nat inside source route-map NAT-To-101
interface Dialer2 overload
ip nat inside source route-map NAT-To-102
interface Dialer1 overload
that will solve the problem
but i don't understand matching nat rules
will be based on interface dialer up or down or not ?
Originial Configuration file :
!
interface GigabitEthernet0/0
description
$ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
no ip address
duplex auto
speed auto
!
interface GigabitEthernet0/0.52
encapsulation dot1Q 52
ip address 192.168.3.10 255.255.255.0
ip nat inside
ip virtual-reassembly in
ip policy route-map redirect
!
interface GigabitEthernet0/0.55
encapsulation dot1Q 55
ip address 192.168.55.10 255.255.240.0
ip access-group DNS-Guest in
ip nat inside
ip virtual-reassembly in
!
interface GigabitEthernet0/1
description $ES_LAN$
ip address 10.23.200.10 255.255.255.248
ip flow ingress
ip flow egress
duplex auto
speed auto
service-policy input ETH-IN
interface ATM0/1/0
no ip address
ip mtu 1492
ip tcp adjust-mss 1452
no atm ilmi-keepalive
dsl enable-training-log delay 0
pvc 0/35
encapsulation aal5snap
pppoe-client dial-pool-number 1
!
!
interface ATM0/2/0
no ip address
ip mtu 1492
ip tcp adjust-mss 1452
no atm ilmi-keepalive
dsl enable-training-log delay 0
dsl lom 200
pvc 0/35
encapsulation aal5snap
pppoe-client dial-pool-number 2
!
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp authentication pap chap callin
ppp chap hostname xxxxx
ppp chap password 7 xxxxx
ppp pap sent-username xxxxx password 7
xxxxx
!
interface Dialer2
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 2
dialer-group 2
ppp authentication pap chap callin
ppp chap hostname xxxxx
ppp chap password 7 xxxxx
ppp pap sent-username xxxxx password 7
xxxxx
!
!ip nat inside source route-map NAT-To-101
interface Dialer1 overload
ip nat inside source route-map NAT-To-102
interface Dialer2 overload
ip route 0.0.0 .0
0.0.0.0 Dialer1
ip route 0.0.0 .0
0.0.0.0 Dialer2
!
ip access-list extended To-101
permit ip host 192.168.3.8 any
ip access-list extended To-102
permit ip host 192.168.55.9 any
permit ip host 192.168.55.8 any
permit ip host 192.168.3.7 any
permit ip 10.23.251.0 0.0.0 .127
any
!
route-map redirect permit 10
match ip address To-101
set interface Dialer1
!
route-map redirect permit 20
match ip address To-102
set interface Dialer2
!
route-map NAT-To-101 permit 10
match ip address To-101
set interface Dialer1
route-map NAT-To-102 permit 10
match ip address To-102
set interface Dialer2
Answer:
change these :
route-map To-102 permit 10
match ip address To-102
match interface Dialer2
!
route-map To-101 permit 10
match ip address To-101
match interface Dialer1
To:
route-map To-102 permit 10
match ip address NAT
match interface Dialer2
!
route-map To-101 permit 10
match ip add NAT
match interface Dialer1
ip access-list extended NAT
permit ip 192.168.3.0 0.0.0 .255
any
And add an EEM applet that clears the
existing NAT translation when the Dialer2 gets down:
event manager applet CLEARNAT
event syslog pattern
"%LINEPROTO-5-UPDOWN: Line protocol on Interface Dialer.*, changed state
to down"
action 1.0 cli command "enable"
action 2.0 cli command "clear ip WS-C3560X-24T-S Price nat
translation *"
For more WS-C3560X-24T-L news about Price ans Specification, you can click here.
http://www.3anetwork.com/cisco-ws-c3560x-24t-l-price_p44.html
没有评论:
发表评论