cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1009
Views
0
Helpful
5
Replies

Access of NAT IP address from inside

vipinrajrc
Level 3
Level 3

Hi experts,

i am not able to access NATed IP from inside of the network.

Is there any reason for that?

Thanks

Vipin

Thanks and Regards, Vipin
2 Accepted Solutions

Accepted Solutions

Hi,

You  can't do hairpinning  on a  Cisco router. The only way to access it  from inside would be either with its private address or by FQDN if there is a record for it on an external DNS server using the feature called DNS doctoring which is the default on Cisco routers.You could also use the hosts file on the clients to map the FQDN to the internal IP.

Regards.

Alain

Don't forget to rate helpful posts.

View solution in original post

Hi Vipin,

You will be not be able to access the nated IP (public) from inside.
You must need to access that with the private IP.
This is because when you are going outside (to internet) through the same public IP and accessing the same is not allowed.


Please rate the helpfull posts.
Regards,
Naidu.

View solution in original post

5 Replies 5

Julio Carvajal
VIP Alumni
VIP Alumni

Hello Again Vipin,

Do you have any access-groups on the interfaces that you could share?

Are you trying to access a web server?

Please let us know the answer of those questions and if its possible please share the Running-config.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Hi,

Say, i have a server which is publically available. But the same thing i can't access from inside.

assume a webserver is that, and it can access publically as http://1.1.1.1:8080

but from inside of the organization i can't access the same page using http://1.1.1.1:8080.

This is what my doubt.

Why is this happening. i dont have the logic behind it. please advice.

Thanks

Vipin

Thanks and Regards, Vipin

Hi,

Anyone please advice, what is the reason behind it?

Thanks

Vipin

Thanks and Regards, Vipin

Hi,

You  can't do hairpinning  on a  Cisco router. The only way to access it  from inside would be either with its private address or by FQDN if there is a record for it on an external DNS server using the feature called DNS doctoring which is the default on Cisco routers.You could also use the hosts file on the clients to map the FQDN to the internal IP.

Regards.

Alain

Don't forget to rate helpful posts.

Hi Vipin,

You will be not be able to access the nated IP (public) from inside.
You must need to access that with the private IP.
This is because when you are going outside (to internet) through the same public IP and accessing the same is not allowed.


Please rate the helpfull posts.
Regards,
Naidu.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco