HPE Community
Other HPE Product Questions
1819984 Members
3884 Online
109608 Solutions
New Discussion

Configure Dynamic NAT

 
Manoranjan433
Visitor

‎10-28-2023 03:16 AM

‎10-28-2023 03:16 AM

Configure Dynamic NAT

We have a HP MSR 2003 router and i am trying to configure dynamic nat but unable to do that. Actually ISP has gave the WAN ip 172.24.242.229 /30 for point to point connectivity and also give us a public ip pool which is 117.250.89.0 /29 and our LAN IP is 10.93.0.1 /24.

I am able to ping other side of the router 172.24.242.230 also checked the "display arp" it is getting the hardware address from remote device  and checked "display nat session" it shows active session : 0

Here is the configuration of the router and suggest me where i am missing something-

Thanks in advance!!

[HPE]display current-configuration
#
version 7.1.064, Release 0809P33
#
sysname HPE
#
security-zone intra-zone default permit
#
nat address-group 5
address 117.250.89.1 117.250.89.6
#
dhcp enable
dhcp server always-broadcast
#
dns proxy enable
#
password-recovery enable
#
vlan 1
#
dhcp server ip-pool balasore-dhh
gateway-list 10.93.0.1
network 10.93.0.0 mask 255.255.255.0
address range 10.93.0.2 10.93.0.254
dns-list 218.248.112.193 8.8.8.8
#
controller Cellular0/0
#
interface Aux0
#
interface NULL0
#
interface Vlan-interface1
description ***LAN***
ip address 10.93.0.1 255.255.255.0
#
interface GigabitEthernet0/0
port link-mode route
description Multiple_Line
ip address 172.24.242.229 255.255.255.252
dns server 218.248.112.193
dns server 218.248.112.225
tcp mss 1280
nat outbound 3000 address-group 5
#
interface GigabitEthernet0/1
port link-mode route
#
interface GigabitEthernet2/0
port link-mode bridge
#
interface GigabitEthernet2/1
port link-mode bridge
#
interface GigabitEthernet2/2
port link-mode bridge
#
interface GigabitEthernet2/3
port link-mode bridge
#
scheduler logfile size 16
#
line class aux
user-role network-admin
#
line class tty
user-role network-operator
#
line class vty
user-role network-operator
#
line aux 0
user-role network-admin
#
line vty 0 63
authentication-mode scheme
user-role network-admin
user-role network-operator
protocol inbound ssh
#
ip route-static 0.0.0.0 0 GigabitEthernet0/0 172.24.242.230
#
ssh server enable
#
acl advanced 3000
rule 5 permit tcp source 10.93.0.0 0.0.0.255 destination 117.250.89.0 0.0.0.7
#
password-control enable
undo password-control aging enable
undo password-control history enable
password-control length 6
password-control login-attempt 3 exceed lock-time 10
password-control update-interval 0
password-control login idle-time 0
#
domain system
#
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
user-group system
#
local-user admin class manage
service-type ssh telnet http
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
#
cwmp
cwmp enable
#
ip http enable
ip https enable
#
return
[HPE]ping 8.8.8.8
Ping 8.8.8.8 (8.8.8.8): 56 data bytes, press CTRL+C to break
Request time out
Request time out
Request time out
Request time out
Request time out

--- Ping statistics for 8.8.8.8 ---
5 packet(s) transmitted, 0 packet(s) received, 100.0% packet loss
[HPE]ping 172.24.242.230
Ping 172.24.242.230 (172.24.242.230): 56 data bytes, press CTRL+C to break
56 bytes from 172.24.242.230: icmp_seq=0 ttl=255 time=2.210 ms
56 bytes from 172.24.242.230: icmp_seq=1 ttl=255 time=1.508 ms
56 bytes from 172.24.242.230: icmp_seq=2 ttl=255 time=1.104 ms
56 bytes from 172.24.242.230: icmp_seq=3 ttl=255 time=0.753 ms
56 bytes from 172.24.242.230: icmp_seq=4 ttl=255 time=1.377 ms

--- Ping statistics for 172.24.242.230 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.753/1.390/2.210/0.485 ms
[HPE]ping 172.24.242.229
Ping 172.24.242.229 (172.24.242.229): 56 data bytes, press CTRL+C to break
56 bytes from 172.24.242.229: icmp_seq=0 ttl=255 time=0.460 ms
56 bytes from 172.24.242.229: icmp_seq=1 ttl=255 time=0.404 ms
56 bytes from 172.24.242.229: icmp_seq=2 ttl=255 time=0.476 ms
56 bytes from 172.24.242.229: icmp_seq=3 ttl=255 time=0.411 ms
56 bytes from 172.24.242.229: icmp_seq=4 ttl=255 time=0.409 ms

--- Ping statistics for 172.24.242.229 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.404/0.432/0.476/0.030 ms

0 Kudos
Reply
1 REPLY 1
support_s
System Recommended

‎10-29-2023 10:24 PM

‎10-29-2023 10:24 PM

Query: Configure Dynamic NAT

Hello,

 

Thank you for Posting! HPE Networking forum has moved to Aruba Airheads Community and for HPE networking and Aruba product queries, request you to visit and post your query here.

 

You can refer to this link for more details.

Please click on "Thumbs Up/Kudo" icon to give a "Kudo".

 

Thank you for being a HPE valuable community member.


Accept or Kudo

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.