Ads 468x60px

Monday, April 16, 2012

Maipu - Outside Destination NAT Testing



Dear All, I came across one testing for Outside destination NAT. In this post I am sharing this report. Hope it will help in real time installation using Maipu Routers.
Normally we do inside NAT, But some time as per requirement we have to do outside Destination NAT. 

Topology details - 



Objective - CPE LAN network 192.168.115.155/24 will access 192.168.115.150 to access 207.67.x.x server. LAN network should not directly access public server. 

Solution - Outside Destination NAT 

Configuration template:

MP801E:

ip access-list extended 1001
 10 permit ip any any
 exit

interface fastethernet0
 description ###MPLS_WAN_LINK###
 ip address 10.205.29.9 255.255.255.252
 ip nat outside
 exit

interface fastethernet1
 description ###LAN_network###
 ip address 192.168.115.155 255.255.255.0
 ip nat inside
 exit
                                 
ip nat outside source static 207.67.74.x 192.168.115.150
ip nat inside source list 1001 interface fastethernet0 overload

ip route 0.0.0.0 0.0.0.0 10.205.29.10

Testing result:

From PC to ping 192.168.115.150:



On MAIPU 801E can take the debug information when PC ping server:

 

And the debugs on MP801E:
MP801E#
01:12:39: %NAT-7-TRANS: input from fastethernet1, proto=1, src=192.168.115.200:58760, dst=192.168.115.150: 0, vrf=0.
01:12:39: %NAT-7-TRANS: create translation record, 192.168.115.150:0-->207.67.74. x :58760, proto=1, vrf=0.
01:12:39: %NAT-7-TRANS: destination translation, dst=207.67.74.x :58760.
01:12:39: %NAT-7-TRANS: forwarded.
01:12:39: %NAT-7-TRANS: output to fastethernet0, proto=1, src=192.168.115.200:58760, dst=207.67.74. x: 0, vrf=0.
01:12:39: %NAT-7-TRANS: create translation record, 192.168.115.200:58760-->10.205.29.9:58760, proto=1, vrf=0.
01:12:39: %NAT-7-TRANS: source translation, src=10.205.29.9:58760.
01:12:39: %NAT-7-TRANS: forwarded.
MP801E#

Description -  You can see when PC-192.168.115.200 is trying to access public server. PC is accessing 192.168.115.150 and the request is forwarded to Public server 207.67.74.x

Hope this testing report will help you ...

Thanks for reading.. 

For feedback. Plz comment with Name and Mail ID.. 




Posted by Uttamkumar at 9:43 AM 14 comments
Labels: ,

Friday, April 13, 2012

Maipu LACP Manual Mode and Cisco ON Mode Testing

As discussed in last post of LACP configurations, We will see Maipu LACP Manual mode and Cisco ON mode configurations in this post. This is testing report for inter-operability between Maipu and Cisco Switches.



Maipu Manual Link Aggregation Manual mode- Cisco ON mode


Objective – To test the compatibility of Cisco and Maipu switch for Link aggregation in Cisco ON mode and Maipu Manual Mode. 

Cisco Configuration –
!
port-channel load-balance src-dst-mac
interface Port-channel1
 switchport trunk native vlan 2
 switchport mode trunk
 load-interval 30
interface FastEthernet0/1
 switchport access vlan 10
 switchport mode access
!
interface FastEthernet0/2
 switchport access vlan 10
 switchport mode access
!
interface FastEthernet0/3
 switchport access vlan 10
 switchport mode access
!
interface FastEthernet0/23
 switchport trunk native vlan 2
 switchport mode trunk
 load-interval 30
 channel-group 1 mode on
!
interface FastEthernet0/24
 switchport trunk native vlan 2
 switchport mode trunk
 load-interval 30
 channel-group 1 mode on
!

Maipu Configuration -

link-aggregation 1 mode manual
link-aggregation 1 load-balance src-dst-mac
vlan 1
 exit

vlan 2,10
port 0/0/14
 duplex full
 speed 100
 link-aggregation 1 manual
load-interval 30
 exit
port 0/0/15
 duplex full
 speed 100
 link-aggregation 1 manual
load-interval 30
 exit

link-aggregation 1
 port-type nni
 port mode trunk
 port trunk allowed vlan all
 port trunk pvid vlan 2
load-interval 30
 exit


Show Outputs
Screenshots –

Cisco Screenshots

Cisco Port channel status -



Port-Channel Interface output –


Interface Fa0/23 -


 Interface Fa0/24 -

 Maipu Screenshots –


Maipu Link Aggregation Output -


Maipu Port 0/0/14 -


 Maipu Port 0/0/15 -





Test Conclusion- Link Aggregation is working properly between Maipu and Cisco. Bandwidth is load-balancing between two trunk links.


Device IOS details - 

Maipu IOS details - 




Cisco IOS details - 



Hope this information will help you. 

Thanks for reading.. 

For feedback. Plz comment with Name and Mail ID.. 




Posted by Uttamkumar at 12:57 PM 20 comments
Labels: ,
Subscribe to: Posts (Atom)
Related Posts Plugin for WordPress, Blogger...