Many thanks, chaps. It's getting clearer.
So, what's the issue with running the one-armed router on your NetView
system (other than making for complex static routing tables)?
Cheers,
Jane
Paul Stroud wrote:
Alan,
We have the one-armed router setup here and it works fine.
Here are the specifics:
Translated range (10.10.10.0/24)
maps one-to-one to true range(192.168.10.0/24)
Here is the setup
Router A Router B
| |
--------------------------
|
CNAT
All incoming packets from Router A to the translated range
are sent to CNAT.
All outgoing packets(true address) are sent back to Router A
which then handles the routing of the packet from there.
Here is an example:
Packet G is addressed to 10.10.10.20 and comes into Router A,
it is then routed to CNAT which translates the packet to
192.168.10.20 which is then routed back to Router A which
routes the packet to its destination. The return packet must go
back through CNAT regardless, so the default router for all
192.168.10.0/24 addresses is the CNAT machine itself. If the
packet needs to be translated, it will be, if not it will be passed
untranslated to Router A which will again route the packet to
its destination.
Remember, the biggest thing about CNAT is the routing. Map
out the path the packet is going to take and make sure that
it is going where it needs to go to be (un)translated.
I'm sure at this point I have just confused the issue, but I'm
just trying to help;-()
Paul
On Tuesday 22 April 2003 08:58, Alan E. Hennis wrote:
Jane
My understanding of the "one-armed router" is as follows.
In an two interface CNAT configuration you have a box in-line with the
NetView or TEC system. All traffic must flow through the CNAT box to get to
the NetView/TEC box.
NetView/TEC ----------- CNAT BOX ------------ Your Network
In a one-arm router the CNAT box has only one interface (i.e. packets flow
in and out the same interface). Static routes are used to make all your
network traffic flow to the CNAT box and then to the NetView/TEC box
CNAT BOX
NetView/TEC -----------+------------ Your Network
In the one-arm router packets flow to the CNAT box and then back out to the
NetView/TEC box.
As far as configuration, I am still trying to make the one-arm router work.
Thanks
Alan E. Hennis
Caterpillar Inc.
Systems+Process Division
309.494.3308
hennis_alan_e@cat.com
Jane Curry
<jane.curry@skills
-1st.co.uk>
04/22/2003 05:03 To: NetView mailing list
<nv-l@lists.tivoli.com> AM tme10
<tme10@lists.tivoli.com> cc:
Subject: [nv-l] CNAT 2.1
configurations
Caterpillar: Confidential Green Retain Until: 05/22/2003
Retention Category: G90 -
Information and Reports
The Comprehensive Network Address Translation (CNAT) 2.1 package that
now comes with TEC 3.8 says in the Release Notes that there are 2 new
supported configurations:
* Primary CNAT only, with no redundancy, on a system with one or two
interfaces. A CNAT with a single interface is referred to as a
?one-armed router?
CNAT.
* Primary CNAT installed on a NetView 6.x or newer system. Redundancy is
not
supported with this configuration, and the CNAT cannot act as a ?one-armed
router? (the CNAT is performing translation for the benefit of NetView
only).
I cannot find any further references in either the Release Notes or the
User's Guide and no entries when searching the IBM Support site.
Does anyone have any further details ojn this "one-armed router" (like
how to configure it) and on using CNAT to perform translation for
NetView only. Why can I not combine the one-armed router with
translating for NetView only?
Many thanks for any input,
Jane
--
Tivoli Certified Consultant & Instructor
Skills 1st Limited, 2 Cedar Chase, Taplow, Bucks, SL6 0EU, UK
Tel: +44 (0)1628 782565
Copyright (c) 2003 Jane Curry <jane.curry@skills-1st.co.uk>. All rights
reserved.
---------------------------------------------------------------------
To unsubscribe, e-mail: nv-l-unsubscribe@lists.tivoli.com
For additional commands, e-mail: nv-l-help@lists.tivoli.com
*NOTE*
This is not an Offical Tivoli Support forum. If you need immediate
assistance from Tivoli please call the IBM Tivoli Software Group
help line at 1-800-TIVOLI8(848-6548)
|