Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
684
Views
0
Helpful
3
Replies

Accessing public IP from local network

Inaki Kortazar
Level 1
Level 1

‎07-21-2010 02:20 PM - edited ‎03-04-2019 09:08 AM

Hi all,

We are having some issue accesing, from our LAN, to a web server situated on the same internal network through our public address. We are trying to do so, since we use a program with a hyperlink to that web server and, we can use it making demos on our LAN or on a customer's site (no DNS server available on our LAN).

We have a Cisco 837 ADSL router and we have the NAT configured. From the Internet we haven't got any problem on accessing the http port of the server. But, when from our LAN we type http://X.X.X.X (where X is our public IP address), we do not receive any response (if we activate the "ip http server" on the router, we access the router web page). This is what we have configured:

ip nat inside source static tcp 192.168.1.2 80 X.X.X.X 80 extendable

interface ethernet0

  ip nat inside

interface Dialer0

  ip nat outside

What are we missing? Should we use "ip nat inside destination.."? Is it possible to do this configuration?

Any suggestion will be appreciated!

THANK YOU VERY MUCH IN ADVANCE!

Labels:
0 Helpful
3 Replies 3

manish arora
Level 6
Level 6

‎07-21-2010 04:48 PM

Can you please post debug ip nat out while trying to access your webserver from lan ? also please post complete sh run ( remove passwords + public ip's ). also, your overload nat ip and static nat ip for web server are different right ? or you are doing port translation ?

thanks

manish

0 Helpful

Nagaraja Thanthry
Cisco Employee
Cisco Employee

‎07-21-2010 05:04 PM

Hello,

You would have to configure NAT Virtual interface and apply NAT to the virtual interface. This will ensure that the NAT is applied irrespective of the interface it is coming from.

Example:

no ip nat source static extendable

You need to do the above with all the existing NAT configurations. You can reinsert them once you configure the below commands.

interface Dialer0

no ip nat outside

ip nat enable

exit

interface Ethernet0

no ip nat inside

ip nat enable

exit

ip nat source static extendable

When you configure like above, the router will create a NVI interface and apply all NAT configurations to that interface. From then onwards, whenever you access any of the translated addresses from any interface, it will be handled by the NVI interface. NVI interface un-nats the traffic and sends it to correct destination.

http://www.cisco.com/en/US/docs/ios/ipaddr/configuration/guide/iadnat_addr_consv_ps6350_TSD_Products_Configuration_Guide_Chapter.html#wp1084652

Hope this helps.

Regards,

NT

0 Helpful

Inaki Kortazar
Level 1
Level 1
In response to Nagaraja Thanthry

‎07-22-2010 01:53 PM

Thank you very much for your answers,

We have tried today configuring the NAT virtual interface, but the command "ip nat enable" was not supported. We are using an old 837. Which IOS version should we install?

THANK YOU VERY MUCH!!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card