Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PC -> router -> gre tunnel -> internet

Status
Not open for further replies.
lohelle

lohelle

Technical User
Mar 25, 2006
36
NO
I want to do the following: (relevant config first)

-------------------------------------

router a:

fastethernet 0/0
(local)
ip address 192.168.0.1 255.255.255.0
ip nat inside


fastethernet 0/1
(wan)
ip address 213.1.1.2 255.255.255.192
ip nat outside


interface Tunnel1
ip address 10.200.1.1 255.255.255.252
tunnel source 213.1.1.2
tunnel destination 213.2.2.2


ip nat pool natpool 213.1.1.2 213.1.1.2 prefix-length 24
ip nat inside source list 150 pool natpool overload
ip route 0.0.0.0 0.0.0.0 213.1.1.1
ip route 192.168.1.0 255.255.255.0 10.200.1.2
access-list 150 permit ip 102.168.0.0 0.0.0.255 any


---------------------------------------------------------------


router b:

fastethernet 0/0
(local)
ip address 192.168.1.1 255.255.255.0
ip nat inside


fastethernet 0/1
(wan)
ip address 213.2.2.2 255.255.255.192
ip nat outside


interface Tunnel1
ip address 10.200.1.2 255.255.255.252
tunnel source 213.2.2.2
tunnel destination 213.1.1.2


ip nat pool natpool 213.2.2.2 213.2.2.2 prefix-length 24
ip nat inside source list 150 pool natpool overload
ip route 0.0.0.0 0.0.0.0 213.2.2.1
ip route 192.168.0.0 255.255.255.0 10.200.1.1
access-list 150 permit ip 102.168.1.0 0.0.0.255 any

--------------------------------------------------------------

I want traffic from a certain PC behind router b (192.168.1.2) in and out using router a's wan connection
(pc - router b - tunnel 1- router a - nat - internet - nat - router a - tunnel 1 - router b - pc)
How do I have to change the configs to do this? (please include the changed lines)

Thanks in advance! :)
 
Sort by date Sort by votes
If you only want traffic from a certain IP to take that path then you need to use Policy-Based Routing.
 
Upvote 0 Downvote
Yes.. But my attempt did not work.. I created a route-map that match the host ip (acl) and st the next hop ip to the other side of the tunnel.

I also added the host to the nat ACL on the router that I want to NAT the traffic for the host.. The routes are correct (the host can ping the router (all interfaces) on the other side of the tunnel)

Do any of you have an example of how you would do this?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Tariq Habaybeh
  • Locked
  • Question
Cisco 881WD-E-K9 router configuration
Replies
1
Views
109
burtsbees
burtsbees
Mogles49
  • Locked
  • Question
tshooting-tunnels
Replies
0
Views
69
Mogles49
Mogles49
Zia khan
  • Locked
  • Question
Cisco: 2811 Router
Replies
1
Views
89
CASSBusinessSystems
CASSBusinessSystems
siggyb
  • Locked
  • Question
Router on a stick, router pings internet but sitch does not
Replies
1
Views
75
ADB100
ADB100
kjhg
  • Locked
  • Question
2811 ROUTER
Replies
3
Views
139
iggsterman
iggsterman

Part and Inventory Search

Sponsor

Back
Top