Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
281
Views
0
Helpful
2
Replies

Port Redirection Question

tom.gill
Level 1
Level 1

‎08-13-2007 06:18 PM - edited ‎03-11-2019 03:57 AM

I feel like I understand what I'm doing, but can't figure out why this isn't working.

**********

interface Ethernet0/0

nameif Inside

security-level 100

ip address 192.168.254.254 255.255.255.0

!

interface Ethernet0/3

nameif Outside

security-level 0

ip address dhcp

!

global (Outside) 1 interface

nat (Inside) 1 192.168.254.0 255.255.255.0

nat (Outside) 1 192.168.100.0 255.255.255.0

static (Inside,Outside) tcp interface 5000 192.168.254.1 telnet netmask 255.255.255.255

access-group Outside_In in interface Outside

**********

192.168.254.1 is a router. If I do a debug ip packet on 192.168.254.1, I can see the telnet session coming in - but the place I'm telnet'ing from never sees a response.

Any ideas?

Thanks!

Tom

Labels:
0 Helpful
2 Replies 2

srue
Level 7
Level 7

‎08-13-2007 06:35 PM

what does the following line do (or what do you think it does)?

nat (Outside) 1 192.168.100.0 255.255.255.0

what does access-list Outside_In look like?

0 Helpful

tom.gill
Level 1
Level 1
In response to srue

‎08-13-2007 07:09 PM

Oops....sorry.

nat (Outside) 1 192.168.100.0 255.255.255.0

This was for remote VPN users going back out to the Internet. It has been removed to help troubleshoot.

Here is the access-list I forgot to include:

access-list Outside_In extended permit tcp any interface Outside eq 5000

Thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card