07-10-2007 10:35 AM - edited 03-03-2019 05:47 PM
I have the situation described in the attached diagram.
All packets originated in the server 10.x.x.1 are translated to outside serial IP address.
So, if any user in the internet want to get access to that server, they reach it by outside serial IP address.
However, if I want to realize telnet/ssh to the router using outside serial IP address and originating by the host 200.x.x.163, the NAT realize the translation and send the packet to the server 10.x.x.1.
I need to know if have some manner to resolve this problem with little changes.
07-10-2007 10:40 AM
Instead of a 1to1 NAT, use port translations for what ever services your hosting. For example-
ip nat inside source static tcp 10.x.x.1 80 interface 200.x.x.1 80
Instead of translating the IP your just translation TCP/UDP ports.
HTH and please rate.
07-10-2007 10:49 AM
Thanks
But I don't use only TCP port 80, I have large port list and this type of configuration is not desirable.
Is this possible to make it with another config type?
07-10-2007 11:01 AM
You can do it with multiple ports. Or use a different IP other than your interface.
HTH and please rate.
07-10-2007 11:12 AM
I agree with the above poster to use another static translation with any IP other than the ip of the interface
Narayan
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: