Static NAT , OSPF Null route redistribution , Expiry problem
satishtech
Member Posts: 243
in CCNA & CCENT
My configuration :
Router 0 :
router ospf 10
log-adjacency-changes
redistribute static subnets
network 192.168.10.0 0.0.0.255 area 0
network 172.168.0.0 0.0.255.255 area 0
!
ip nat inside source static 192.168.10.2 193.10.8.2
ip classless
ip route 193.10.8.0 255.255.255.0 Null0
Router 1 :
router ospf 11
log-adjacency-changes
network 172.168.0.0 0.0.255.255 area 0
network 10.0.0.0 0.255.255.255 area 0
After a while I get NAT IP expiry messages, after I turn on nat debugging ?
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [13]
NAT*: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [21]
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 1 (1)
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 2 (2)
Than I cannot connect to the web server(192.168.10.2)
connected to Router 0 ?
next I get
NAT: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [22]
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [14]
now I can connect.
I see this expiring coming and going in NAT and during that
period I was not able to connect to the web server before ,
but it is working ok now ?
ip nat translation timeout command is not in packet tracer.
Router 0 :
router ospf 10
log-adjacency-changes
redistribute static subnets
network 192.168.10.0 0.0.0.255 area 0
network 172.168.0.0 0.0.255.255 area 0
!
ip nat inside source static 192.168.10.2 193.10.8.2
ip classless
ip route 193.10.8.0 255.255.255.0 Null0
Router 1 :
router ospf 11
log-adjacency-changes
network 172.168.0.0 0.0.255.255 area 0
network 10.0.0.0 0.255.255.255 area 0
After a while I get NAT IP expiry messages, after I turn on nat debugging ?
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [13]
NAT*: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [21]
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 1 (1)
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 2 (2)
Than I cannot connect to the web server(192.168.10.2)
connected to Router 0 ?
next I get
NAT: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [22]
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [14]
now I can connect.
I see this expiring coming and going in NAT and during that
period I was not able to connect to the web server before ,
but it is working ok now ?
ip nat translation timeout command is not in packet tracer.
Comments
-
networker050184
Mod Posts: 11,962 Mod
Packet tracer is probably the worst place to test stuff besides some syntax. It's just not a full IOS or hardware to get any kind of accurate testing on timers etc.An expert is a man who has made all the mistakes which can be made. -
Deathmage
Banned Posts: 2,496
satishtech wrote: »My configuration :
Router 0 :
router ospf 10
log-adjacency-changes
redistribute static subnets
network 192.168.10.0 0.0.0.255 area 0
network 172.168.0.0 0.0.255.255 area 0
!
ip nat inside source static 192.168.10.2 193.10.8.2
ip classless
ip route 193.10.8.0 255.255.255.0 Null0
Router 1 :
router ospf 11
log-adjacency-changes
network 172.168.0.0 0.0.255.255 area 0
network 10.0.0.0 0.255.255.255 area 0
After a while I get NAT IP expiry messages, after I turn on nat debugging ?
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [13]
NAT*: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [21]
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 1 (1)
NAT: expiring 193.10.8.2 (192.168.10.2) icmp 2 (2)
Than I cannot connect to the web server(192.168.10.2)
connected to Router 0 ?
next I get
NAT: s=10.1.1.2, d=193.10.8.2->192.168.10.2 [22]
NAT*: s=192.168.10.2->193.10.8.2, d=10.1.1.2 [14]
now I can connect.
I see this expiring coming and going in NAT and during that
period I was not able to connect to the web server before ,
but it is working ok now ?
ip nat translation timeout command is not in packet tracer.
was reading this and I was like just increase the "ip nat translation timeout" but the default is 24 hours so then I was like hmmm...packet tracer like Networker said is lame with timers indeed I ran into the same problem myself with my labbing...I just move it over to my home-physical-lab and it worked correctly. I just figured it was a limitation of packet tracer, now I know.