Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Access Lists and NAT

Can you use NAT in combination with ACLs to forward packets that come in on an interface on a specific port (8001)to a specific device on a different port (80)? This is on a router, not a PIX.

If so, then how?

1 ACCEPTED SOLUTION

Accepted Solutions
Purple

Re: Access Lists and NAT

You certainly can. Here's an example

interface Ethernet0

ip nat inside

!

interface Serial0

ip nat outside

!

ip nat inside source static tcp 10.1.1.1 80 200.1.1.1 8001

OR

ip nat inside source static tcp 10.1.1.1 80 serial0 8001

Hope that helps - pls rate the post if it does.

Paresh

2 REPLIES
Purple

Re: Access Lists and NAT

You certainly can. Here's an example

interface Ethernet0

ip nat inside

!

interface Serial0

ip nat outside

!

ip nat inside source static tcp 10.1.1.1 80 200.1.1.1 8001

OR

ip nat inside source static tcp 10.1.1.1 80 serial0 8001

Hope that helps - pls rate the post if it does.

Paresh

Gold

Re: Access Lists and NAT

just a quick add-on.

the inbound acl would be on the public ip, not the private ip.

e.g.

access-list 111 permit tcp any host 200.1.1.1 eq 8001

interface s0

ip access-group 111 in

100
Views
0
Helpful
2
Replies
CreatePlease to create content