I am having a routing problem with people trying to reach my FTP site from the outside. I have PAT in place for many computers on 1 ip address. I have also statically routed my outside ip address 38.100.6.xx 21 to my server ip address 192.168.0.xx 21 using nat, but no one is able to get through. I am using Windows IIS 6 for my FTP site and do not allow anonymous log-ins, but the log-in box does not pop up. I know it is a router problem because I have an old Linksys router that I switch with my Cisco Router and it allows access to the site. Unfortunately it is no longer stable which is why I upgraded to Cisco. Could someone please help? Listed below is my configuration.
ip address 38.x.x.x.255.255.248
ip nat outside
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 192.168.0.243 255.255.255.0
ip nat inside
ip tcp adjust-mss 1452
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 5 life 86400 requests 10000
ip nat inside source list 1 interface FastEthernet4 overload
ip nat inside source static tcp 192.168.0.1 20 22.214.171.124 20 extendable
ip nat inside source static tcp 192.168.0.1 21 126.96.36.199 21 extendable
access-list 1 permit 192.168.0.0 0.0.0.255
Internet access from inside works just fine right? Is this a personal firewall? Can you debug NAT? The config looks OK.
How about the routing!!! what i understand is the server located behind the router and using vlan1 interface ip address as default gateway so the traffic arrived on the vlan1 interface which is has ip nat inside so the server will be NAT only if the traffic coming from vlan1 forward out Fastethernet4 OR if a traffic coming from F4 forwarded to FTP server, the configurations above has nothing wrong, so please provide us with more information about the routing begin used or with full snapshot of running-config.
Please rate helpful posts