Skip to main content
Cisco SD-WAN
Support
Product Documentation
Viptela Documentation

nat

  1. Last updated
  2. Save as PDF

vpn interface nat— Configure a vEdge router to act as a NAT device (on vEdge routers only).

In the transport VPN (VPN 0), you can configure multiple NAT interfaces. In this configuration traffic is load-balanced, via ECMP, among the interfaces.

You can configure a NAT on a physical interface or on a natpool interface. You cannot configure NAT on a loopback interface. Note that for a natpool interface, you can configure only the interface's IP address, shutdown and no shutdown command, and the nat command and its subcommands. You cannot configure another other interface commands.

vManage Feature Template

For vEdge routers only:

Configuration ► Templates ► VPN Interface Cellular (for vEdge cellular wireless routers only)
Configuration ► Templates ► VPN Interface Ethernet
Configuration ► Templates ► VPN Interface NAT Pool
Configuration ► Templates ► VPN Interface PPP

Command Hierarchy

vpn vpn-id
  interface [genumber/slot | natpoolnumber]
    nat
      block-icmp-error     
      direction (inside | outside)
      log-translations
      natpool range-start ip-address1 range-end ip-address2
      [no] overload 
      port-forward port-start port-number1 port-end port-number2 proto (tcp | udp) private-ip-address ip-address private-vpn vpn-id
      refresh (bi-directional | outbound)
      respond-to-ping
      static source-ip ip-address1 translate-ip ip-address2 (inside | outside)
      static source-ip ip-address1 translate-ip ip-address2 source-vpn vpn-id protocol (tcp | udp) source-port number translate-port number
      tcp-timeout minutes
      udp-timeout minutes

Options

None

Example

Configure a vEdge router to act as a NAT:

vEdge# config
vEdge(config)# vpn 1 interface ge0/4 nat

Release Information

Command introduced in Viptela Software Release 14.2.​
Starting with Release 15.1, multiple NAT interfaces can be configured.
In Release 16.3, add support for 1:1 static NAT and dynamic NAT.

Additional Information

See the Configuring Centralized Data Policy, Configuring Local Internet Exit, Configuring Transport-Side NAT, and Using a vEdge Router as a NAT Device articles and the Administrative Distance section in the Unicast Overlay Routing article for your software release.
action
encapsulation
ip gre-route
ip route

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. There are no recommended articles.
  1. Article type
    Reference
  2. Tags
    This page has no tags.