Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

port range forward (nat and access-list)

Hello,

I'm trying to change my configuration.

ATM, the router has several lines to forward each port to local ip's.

The list is a bit big, so I need to forward specific port range to each IP.

eg: from port 20000 to 20999 -> 10.0.0.2

from port 21000 to 21999 -> 10.0.0.3

etc...

atm, i have this configuration:

ip nat pool ovrld 1.2.3.4 1.2.3.4 prefix-length 24

ip nat inside source list 1 interface Fa0/0 overload

ip nat inside source list 7 pool ovrld overload

ip nat inside source static tcp 10.0.0.2 20000 1.2.3.4 20000 extendable

ip nat inside source static tcp 10.0.0.2 20001 1.2.3.4 20001 extendable

(etc)

so, how can i do this? I've tried this config but some services dont work:

ip nat pool srv1 10.0.0.2 netmask 255.255.255.0 type rotary

ip nat inside destination list 100 pool srv1

access-list 100 permit tcp any any range 20000 20999

whats wrong ?

257
Views
0
Helpful
0
Replies
CreatePlease to create content