Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Re-IP DMZ to private space, NAT to public

Greetings,

After the initial information gathering, I find I am at a standstill as-to how I should procede.

We are currently in the process of implementing One-to-One static NAT'ing on our DMZ servers, and RE-IP'ing them to private IP space.

We need to enable DNS resolution, LDAP authentication between the DMZ servers and our network, while making them accessible tobi the public.

I'm hoping for a bit of hand-holding on this issue, since I am not sure where to begin.

2 REPLIES
New Member

Re: Re-IP DMZ to private space, NAT to public

On which platform are you going to do this? Can you post current configuration?

Dan

Cisco Employee

Re: Re-IP DMZ to private space, NAT to public

Hello,

Static translation for DMZ server :

static (dmz,outside) netmask 255.255.255.255

access-list inbound extended permit tcp any host

access-group inbound in interface outside // to permit the inbound TCP connections from any outside IP address to the public IP address of server//

Now, coming to your DNS resolution, I would need to know, where is you DNS server located ? For the external clients, external DNS server would take care of name resoultion.

Thank

Vijaya

192
Views
0
Helpful
2
Replies
CreatePlease login to create content