Nat/Access list

Unanswered Question
Jul 18th, 2008
User Badges:


Im using a cisco 877W router(ip, which is on the ip range, and I have a dvr server which is on I need this server to be available to the internet, so i need to forward certain ports onto that IP. My question is do I need to setup an access list as well as creating a ip nat inside source static rule.

I also have another subnet on, and a router/dhcp server at, and need to setup the Cisco 877W as a VPN server. If VPN server traffic terminates on the CISCO, do I just need to program a route to via

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
joseph.derrick Fri, 07/18/2008 - 05:27
User Badges:


With regards to your first question, yes you need to setup an access-list. Another requirement is, you need to have a routable ip address within your network (this is usually given by your service provider). Configure your perimeter router or the router facing the Internet to use static nat. This allows you to map a private ip address into a publicly routable ip address.


inside int: fa0/0 (ip nat inside)

outside int: se0/0 (ip nat outside)

ip nat inside source static ...

With regards to your second question, I need to clarify some things. Does it mean that your dhcp server have 2 ip addresses specifically ?

Please clarify.




This Discussion