Outbound static, simple question

Unanswered Question
Nov 12th, 2008
User Badges:

Attached is my 1841 security router config. Simple question. Device 10.2.1.6 is my e-mail server & I want it staticly routed through the 65.103.52.172 address, such that when it sends outbound mail the recipients mail server sees it coming from 65.103.52.172. Right now outbound mail appears to be from 65.103.52.169, so I am missing something in this static route. Please advise.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Wed, 11/12/2008 - 09:45
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

What is this line doing -


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat


more specifically what is the route-map for ?


Jon

bsallison Wed, 11/12/2008 - 10:52
User Badges:

Thanks for taking a look Jon!


I also have a VPN coming in through this router and there is some VPN traffic from the remote location that needs access to the 10.2.1.6 server. So, I think the route-map was added because of that VPN so that traffic over the VPN does not get NATed going back to the remote location.


Jon Marshall Wed, 11/12/2008 - 12:05
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

I suspect this line in your config


ip nat inside source route-map nonat interface FastEthernet0/1 overload


is taking precedence over this one


ip nat inside source static tcp 10.2.1.6 25 65.103.52.172 25 extendable


Please do this out of production hours and verify that your VPN traffic still works.


Jon

not sure you need the second route-map statement as you are covered in the first one.


try changing -


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat


to


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat

bsallison Wed, 11/12/2008 - 12:10
User Badges:

try changing -


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat


to


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat


These lines you provided are exactly the same, what am I changing?

Jon Marshall Wed, 11/12/2008 - 12:26
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Sorry about that, sometimes i'm a bit absent minded :-)


ip nat inside source static 10.2.1.6 65.103.52.172 route-map nonat


to


ip nat inside source static 10.2.1.6 65.103.52.172



Actions

This Discussion