I would like to configure a router,
1. My ISP provides a global IP address with PPPoE. ex) 18.104.22.168 .
2. The router used in this scenario is 2611XM with IOS 12.4T(AES) which has two FastEthernet interfaces, Fa0/0 and Fa0/1.
3. I would like to open a HttpServer to public internet.
4. Some clients access to public internet by PAT.
like a following figure.
Could you tell me the basic story or the documentation's url to configure this scinario?
Please check the configuration below. I am assuming you are using
sub-interfaces to configure DMZ and inside:
int fa 0/0.1
Dynamic NAT for inside clients*************
ip nat source list 1 interface fastethernet 0/1 overload
Static NAT for webserver ******************
ip nat source static tcp 22.214.171.124 80 interface fastethernet 0/1 80
access-list 199 permit tcp any
interface fa 0/1
ip access-group 199 in
I noticed that the webserver IP in the DMZ is public IP. If you own that
public IP, then you do not need the static translation. You can change the
access-list entry accordingly.
Hope this helps.
Not a big deal to configure cisco IOS firewall.
Just go through the below URL and hope it will help you to configure your router.