Guest

Preview Tool

Cisco Bug: CSCvh97274 - IOS-XE policy NAT overload translates to the wrong address-different from outgoing interface

Last Modified

Jul 29, 2019

Products (1)

  • Cisco Aironet 1100 Series

Known Affected Releases

16.6.2

Description (partial)

Symptom:
NAT translation using policy NAT is building translations to an interface X even though that interface is not the outgoing interface. Even when using route-map with match interface the translation does not happen properly.

Conditions:
ip nat inside source route-map NAT_TRUST2INET interface GigabitEthernet0/0/0 vrf INET-VRF overload
ip nat inside source route-map NAT_TRUST2LTE interface Cellular0/2/0 vrf INET-VRF overload

route-map NAT_TRUST2LTE permit 10 
 match ip address TRUST_SUBNET
 match interface Cellular0/2/0
!
route-map NAT_TRUST2INET permit 10 
 match ip address TRUST_SUBNET
 match interface GigabitEthernet0/0/0

ip access-list extended TRUST_SUBNET
 permit ip 192.168.90.0 0.0.0.255 any
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.