-
THIS DOCUMENTATION HAS BEEN MOVED
- Part 1: IP Addressing
- Part 2: ARP
-
Part 3: DHCP
-
DHCP Overview
-
Configuring the Cisco IOS XE DHCP Server
-
Configuring the DHCP Server On-Demand Address Pool Manager
-
Configuring the Cisco IOS XE DHCP Relay Agent
-
DHCP Relay Server ID Override and Link Selection Option 82 Suboptions
-
DHCP Server RADIUS Proxy
-
Configuring the Cisco IOS XE DHCP Client
-
Configuring DHCP Services for Accounting and Security
-
ISSU and SSO--DHCP High Availability Features
-
- Part 4: DNS
- Part 5: NAT
- Part 6: NHRP
Feedback
Table Of Contents
Configuring NAT for High Availability
Prerequisites for Configuring NAT for High Availability
Information About Configuring NAT for High Availability
Static Mapping Support with HSRP for High Availability Feature Overview
How to Configure NAT for High Availability
Configuring NAT Static Mapping Support for HSRP
Restrictions for Configuring Static Mapping Support for HSRP
Benefits of Configuring Static Mapping Support for HSRP
Enabling HSRP on the NAT Interface
Enabling Static NAT in an HSRP Environment
Configuration Examples for NAT for High Availability
Configuring Static NAT in an HSRP Environment: Examples
Feature Information for Configuring NAT for High Availability
Configuring NAT for High Availability
First Published: May 2, 2005Last Updated: May 4, 2009This module contains procedures for configuring Network Address Translation (NAT) to support the increasing need for highly resilient IP networks. This network resiliency is required where application connectivity needs to continue unaffected by failures to links and routers at the NAT border.
Finding Feature Information
For the latest feature information and caveats, see the release notes for your platform and software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the "Feature Information for Configuring NAT for High Availability" section.
Use Cisco Feature Navigator to find information about platform support and Cisco IOS XE software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Contents
•
Prerequisites for Configuring NAT for High Availability
•
•
•
•
Prerequisites for Configuring NAT for High Availability
To understand how High Availability (HA) is implemented on the Cisco ASR 1000 Series Aggregation Services Routers, read the "High Availability Overview" chapter in the Cisco ASR 1000 Series Aggregation Services Routers Software Configuration Guide.
Information About Configuring NAT for High Availability
To configure NAT for High Availability, you should understand the following concepts:
•
Static Mapping Support with HSRP for High Availability Feature Overview
When an Address Resolution Protocol (ARP) query is triggered for an address that is configured with NAT static mapping and owned by the router, NAT responds with the burned in MAC (BIA MAC) address on the interface to which the ARP is pointing. Two routers are acting as HSRP active and standby. Their NAT inside interfaces must be enabled and configured to belong to a group.
Address Resolution with ARP
A device in IP can have both a local address (which uniquely identifies the device on its local segment or LAN) and a network address (which identifies the network to which the device belongs). The local address is more properly known as a data link address because it is contained in the data link layer (Layer 2 of the OSI model) part of the packet header and is read by data-link devices (bridges and all device interfaces, for example). The local address is referred to as the MAC address, because the MAC sub-layer within the data link layer processes addresses for the layer.
To communicate with a device on Ethernet, for example, the Cisco IOS XE software first must determine the 48-bit MAC or local data-link address of that device. The process of determining the local data-link address from an IP address is called address resolution. The process of determining the IP address from a local data-link address is called reverse address resolution.
The software uses three forms of address resolution: Address Resolution Protocol (ARP), proxy ARP, and Probe (similar to ARP). The software also uses the Reverse Address Resolution Protocol (RARP). ARP, proxy ARP, and RARP are defined in RFCs 826, 1027, and 903, respectively. Probe is a protocol developed by the Hewlett-Packard Company (HP) for use on IEEE-802.3 networks.
ARP is used to associate IP addresses with media or MAC addresses. Taking an IP address as input, ARP determines the associated media address. Once a media or MAC address is determined, the IP address or media address association is stored in an ARP cache for rapid retrieval. Then the IP datagram is encapsulated in a link-layer frame and sent over the network. Encapsulation of IP datagrams and ARP requests and replies on IEEE 802 networks other than Ethernet is specified by the Subnetwork Access Protocol (SNAP).
How to Configure NAT for High Availability
This module contains one method for configuring NAT for high availability:
•
Configuring NAT Static Mapping Support for HSRP
Both of the following tasks are required and must be performed on both the active and standby routers to configure NAT static mapping support for HSRP:
•
•
Restrictions for Configuring Static Mapping Support for HSRP
•
•
•
Benefits of Configuring Static Mapping Support for HSRP
•
•
Enabling HSRP on the NAT Interface
Perform this task to enable HSRP on the NAT interface of both the active and standby routers.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
DETAILED STEPS
Enabling Static NAT in an HSRP Environment
To enable static mapping support with HRSP for high availability, perform this task on both the active and standby routers.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
DETAILED STEPS
Configuration Examples for NAT for High Availability
This section provides the following configuration example:
•
Configuring Static NAT in an HSRP Environment: Examples
The following example shows support for NAT with a static configuration in an HSRP environment. Two routers are acting as HSRP active and standby, and the NAT inside interfaces are HSRP enabled and configured to belong to the group HSRP1.
Active Router Configuration
interface GigabitEthernet 0/1/1ip address 192.168.5.54 255.255.255.255.0no ip redirectsip nat insidestandby 10 priority 105 preemptstandby 10 name HSRP1standby 10 ip 192.168.5.30standby 10 track GigabitEthernet0/0/0!!ip default-gateway 10.0.18.126ip nat inside source static 192.168.5.33 10.10.10.5 redundancy HSRP1ip classlessip route 10.10.10.0 255.255.255.0 GigabitEthernet0/0/0ip route 172.22.33.0 255.255.255.0 GigabitEthernet0/0/0no ip http serverStandby Router Configuration
interface GigabitEthernet 0/1/1ip address 192.168.5.56 255.255.255.255.0no ip redirectsip nat insidestandby 10 priority 100 preemptstandby 10 name HSRP1standby 10 ip 192.168.5.30standby 10 track GigabitEthernet0/0/1!ip default-gateway 10.0.18.126ip nat inside source static 192.168.5.33 3.3.3.5 redundancy HSRP1ip classlessip route 10.0.32.231 255.255.255 GigabitEthernet0/0/1ip route 10.10.10.0 255.255.255.0 GigabitEthernet0/0/1no ip http serverAdditional References
The following sections provide references related to NAT for high availability.
Related Documents
High Availability on the Cisco ASR 1000 Series Aggregation Services Routers
"High Availability Overview" chapter in the Cisco ASR Series 1000 Aggregation Services Routers Software Configuration Guide
Cisco IOS XE ISSU NAT
NAT configuration tasks
NAT commands: complete command syntax, command mode, command history, usage guidelines, and examples
IP addressing configuration tasks and concepts.
Standards
MIBs
RFCs
Technical Assistance
Feature Information for Configuring NAT for High Availability
Table 1 lists the features in this module and provides links to specific configuration information.
Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS XE software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Note
Table 1 Feature Information for Configuring NAT for High Availability
NAT—Static Mapping Support with HSRP for High Availability
Cisco IOS XE Release 2.1
Static mapping support for HSRP allows the option of having only the HSRP active router respond to an incoming ARP for a router configured with a NAT address.
The following sections provide information about this feature:
•
•
Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1005R)
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.
© 2005-2009 Cisco Systems, Inc. All rights reserved.
