1. Home
  2. Cisco Systems
  3. Quick help needed: Adding IP scope passthrough on cisco 828

Quick help needed: Adding IP scope passthrough on cisco 828

I have a cisco 828 router which is passing all traffic into our firewall.

sh running gives me this (among other):

ip nat inside source list 2 interface BVI1 overload ip classless ip route 0.0.0.0 0.0.0.0 z.x.c.v ip route a.b.c.d 255.255.255.248 10.10.10.5 ip http server

The "problem" is that now we get a new set of IP addresses (because of more IP's needed)

How do I edit the above to pass all trafic from ip q.w.e.r subnet 255.255.255.240 to IP 10.10.10.5 instead of ip route a.b.c.d 255.255.255.248 10.10.10.5 ?

Regards, Lars.

Reply to
Lars Bonnesen
Loading thread data ...

conf t no ip route a.b.c.d 255.255.255.248 10.10.10.5 ip route q.w.e.r 255.255.255.240 10.10.10.5 exit

wri mem

sh ip route static

Reply to
Merv

"Merv" skrev i en meddelelse news: snipped-for-privacy@u72g2000cwu.googlegroups.com...

What does conf t mean? you thing config?

that simple?

Or copy runnning-config startup-config ?

Reply to
Lars Bonnesen

Lars Bonnesen skrev:

typing the following in the config mode should do the trick:

ip route q.w.e.r 255.255.255.240 10.10.10.5 no ip route a.b.c.d 255.255.255.248 10.10.10.5

Also please note the NAT access list, you may need to change that as well to provide NATing for the new addresses.

-SAto

Reply to
SAto

Lars Bonnesen skrev:

that is the command used to enter configuration mode (actually an abbreviation of "configure terminal").

Yes

Yes

-SAto

Reply to
SAto

"SAto" skrev i en meddelelse news: snipped-for-privacy@y41g2000cwy.googlegroups.com...

The only thing regarding this is:

ip address 10.10.10.1 255.255.255.0 ip nat inside

interface BVI1 ip address a.b.c.d 255.255.255.252 ip nat outside

access-list 2 permit 10.10.10.0 0.0.0.255 access-list 23 permit 10.10.10.0 0.0.0.255

Nothing more regaring NAT.

But I have tried (as a test) to add y.y.y.y 255.255.255.255 10.10.10.5 (without saveing and restarting), and it does not show up in the sh ip route or sh config. Do I need to save and reboot it in order to have it here?

Regards, Lars.

Reply to
Lars Bonnesen

"Lars Bonnesen" skrev i en meddelelse news:44900dec$0$139$ snipped-for-privacy@dread11.news.tele.dk...

Ok, now I get it - config terminal... (-;

Regards, Lars.

Reply to
Lars Bonnesen

Lars Bonnesen skrev:

As long as the new network you are adding does not need to be NATed you should be good. This access list will allow only addresses in the

10.10.10.1-254 range to be NATed.

No, there should be no need to either save nor reboot. are you sure the command is entered correctly?

conf t ip route y.y.y.y 255.255.255.255 10.10.10.5

the mask you supply above is a host mask, probably not what you want for that network but it should display in the routing table and the "sh running" command.

The "sh config" command only displays configuration that is saved with the wr mem or copy run start commands.

-SAto

Reply to
SAto

It is working as expected and very nicely. Thanks to all of you.,

Regards, Lars.

"SAto" skrev i en meddelelse news: snipped-for-privacy@y41g2000cwy.googlegroups.com...

Reply to
Lars Bonnesen

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.