Static NAT

keigo_komatsu · ‎07-10-2007

I have the situation described in the attached diagram.

All packets originated in the server 10.x.x.1 are translated to outside serial IP address.

So, if any user in the internet want to get access to that server, they reach it by outside serial IP address.

However, if I want to realize telnet/ssh to the router using outside serial IP address and originating by the host 200.x.x.163, the NAT realize the translation and send the packet to the server 10.x.x.1.

I need to know if have some manner to resolve this problem with little changes.

Collin Clark · ‎07-10-2007

Instead of a 1to1 NAT, use port translations for what ever services your hosting. For example-

ip nat inside source static tcp 10.x.x.1 80 interface 200.x.x.1 80

Instead of translating the IP your just translation TCP/UDP ports.

HTH and please rate.

keigo_komatsu · ‎07-10-2007

Thanks

But I don't use only TCP port 80, I have large port list and this type of configuration is not desirable.

Is this possible to make it with another config type?

Collin Clark · ‎07-10-2007

You can do it with multiple ports. Or use a different IP other than your interface.

HTH and please rate.

royalblues · ‎07-10-2007

I agree with the above poster to use another static translation with any IP other than the ip of the interface

Narayan