Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Destination NAT - IOS router - traffic inside

I'm having an issue using a destination nat. I'm not sure if this is the best way to do it.

I have a static nat in place mapping a public ip to internal ip All is working well.

Howerver I need the public ip to be accessible to all clients on the internal network. (DB programers hard corded IPs into there program).

Currently I can't ping the public address of the static nat internally.

What type of nat / acl do i need to put in place to get this to work?

Any documentation or advice would be helpful.


Re: Destination NAT - IOS router - traffic inside

You may be able to use policy based routing. Create an access-list permitting all of your internal subnet to the one internal host, but do it by public IP.

ip access-list ext TRANSLATE

permit ip host

Then create your route map that forces all of those hosts going to that destination to the internal address instead.

(From memory )

route-map INTERNAL permit 5

match ip address TRANSLATE

set ip next-hop <--your internal server ip.

Again, I don't know if this will work, but it might.



HTH, John *** Please rate all useful posts ***