07-10-2007 10:35 AM - edited 03-03-2019 05:47 PM
I have the situation described in the attached diagram.
All packets originated in the server 10.x.x.1 are translated to outside serial IP address.
So, if any user in the internet want to get access to that server, they reach it by outside serial IP address.
However, if I want to realize telnet/ssh to the router using outside serial IP address and originating by the host 200.x.x.163, the NAT realize the translation and send the packet to the server 10.x.x.1.
I need to know if have some manner to resolve this problem with little changes.
07-10-2007 10:40 AM
Instead of a 1to1 NAT, use port translations for what ever services your hosting. For example-
ip nat inside source static tcp 10.x.x.1 80 interface 200.x.x.1 80
Instead of translating the IP your just translation TCP/UDP ports.
HTH and please rate.
07-10-2007 10:49 AM
Thanks
But I don't use only TCP port 80, I have large port list and this type of configuration is not desirable.
Is this possible to make it with another config type?
07-10-2007 11:01 AM
You can do it with multiple ports. Or use a different IP other than your interface.
HTH and please rate.
07-10-2007 11:12 AM
I agree with the above poster to use another static translation with any IP other than the ip of the interface
Narayan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide