Nat/Access list

Unanswered Question
Jul 18th, 2008
User Badges:

Hello,

Im using a cisco 877W router(ip 192.168.0.1), which is on the 192.168.0.0 ip range, and I have a dvr server which is on 192.168.0.10. I need this server to be available to the internet, so i need to forward certain ports onto that IP. My question is do I need to setup an access list as well as creating a ip nat inside source static rule.


I also have another subnet on 10.0.5.0, and a router/dhcp server at 10.0.5.20/192.168.0.2, and need to setup the Cisco 877W as a VPN server. If VPN server traffic terminates on the CISCO, do I just need to program a route to 10.0.5.0 via 192.168.0.2.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
joseph.derrick Fri, 07/18/2008 - 05:27
User Badges:


Hi,


With regards to your first question, yes you need to setup an access-list. Another requirement is, you need to have a routable ip address within your network (this is usually given by your service provider). Configure your perimeter router or the router facing the Internet to use static nat. This allows you to map a private ip address into a publicly routable ip address.


ex.


inside int: fa0/0 (ip nat inside)

outside int: se0/0 (ip nat outside)


ip nat inside source static ...


With regards to your second question, I need to clarify some things. Does it mean that your dhcp server have 2 ip addresses specifically 10.0.5.20/192.168.0.2 ?


Please clarify.


Thanks,


k0rg

Actions

This Discussion