需求:监控服务器的IP是10.31.32.177,我需要去监控N3K交换机上的专线可用性,需要配置源地址转换,将监控服务器的地址转换为专线接口的出接口IP地址。
实现方式:
1、一端是VLAN,一端是物理接口的配置
interface Vlan100 # inside接口,监控流量的入接口
no shutdown
ip address 10.13.254.53/28
ip nat inside
interface Ethernet1/44 # outside接口,接的是专线
no switchport
ip address 10.226.96.6/30 # 专线对端地址是10.226.96.5
no shutdown
ip nat outside
ip access-list JK_L2_ACL # 使用ACL匹配流量
permit ip 10.31.32.177/32 10.226.96.5/32 # 10.31.32.177/32是我们监控服务器的地址
ip nat inside source list JK_L2_ACL interface Ethernet 1/44 overload2、两端都是VLAN接口的配置
interface Vlan100 # 监控流量的入接口
no shutdown
ip address 10.13.254.53/28
ip nat inside
hsrp 10
preempt
priority 105
ip 10.13.254.55
interface Ethernet1/45 # 专线物理接口
description jiaoyi-A
switchport access vlan 2211
speed 1000
interface Vlan2211 # 专线VLAN接口
description name jiaoyi-A
no shutdown
ip address 221.112.151.241/24 # 专线对端地址是221.112.150.254
ip nat outside
ip access-list JK_L1BP_ACL # 匹配监控流量
30 permit ip 10.31.32.177/32 221.112.151.254/32 # 10.31.32.177/32是监控服务器的地址
ip nat inside source list JK_L1BP_ACL interface vlan 2211 overload