Answer the question
In order to leave comments, you need to log in
NAT between overlapping networks
Good day.
The organization's network (cisco 2821+cisco 1811) is connected directly to a child organization (cisco 881 and server running Win2k3) with intersecting network addressing.
PC1 should safely open a web page with PC2, for this NAT was enabled on the router of the subsidiary organization.
Tell me, did you correctly configure the "intersecting" c1811 and c881 routers? What did you miss?
Answer the question
In order to leave comments, you need to log in
And why did you decide that you have "intersecting" addressing?
192.168.0/24 and 192.168.40/24 are two networks that can easily be routed without using NAT, after all.
for cisco 1811:
ip route add 192.168.40/24 via 172.16.0.46
for cisco 881:
ip route add 192.168.0/24 via 172.16.0.33
Correct me if I misunderstood something :)
@capt_Rimmer
that's the problem, that you carefully hid this unfortunate fact on the diagram - it is not visible from a run.
Does the mask 255.255.192.0 tell you anything?
speaks but is not very clear. since a route with this mask can mean a bunch of options for cutting networks to the left of 2821, that's why its config is needed.
For example - 63 class C networks and one on the right, or a larger / smaller cut into subnets.
IMHO, instead of sculpting NATs, it is more practical and easier to either change the network numbering to the right of 881, or cut out the range 192.168.40/24 from the numbering on the left (yes, here you will have to write static routes more than 5 times, on all 4 routers).
you know better.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question