I have success with my setup internally (within the inside LAN traffic is fine). With one static public IP address, I can get out to the internet from the inside LAN and the DMZ (excellent). However I have no success for outside users (on the internet) to access my servers within the inside LAN :-((
.Q1. Does the firewall rule apply BEFORE or AFTER the NAT rule. Discussion. For port translation to work, in one of my NAT rules the incoming port needs to be translated from xx, to yy in my setup. The reason being is the yy is the port setup on the server but a group of external users cannot go out on that port (they are limited to their outgoing services, one of which is XX). Thusly one of the firewall rules allows the translated service (and that user) to access the server. If the firewall rules are applied first, then I have to additionally allow the initial incoming port.
.Q2. What is correct format for static NAT RULE........ (allowing external user (any) to access an internal server on a inside lan host (private IP).
-A. nat (outside,main-lan) source static any any destination static ISP-Assigned-WANIP tfs-server OM2 OM2
-B. nat (outside,Main-Lan) source static any any destination static tfs-server tfs-server service OM2 OM2
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...