I've configure a 1720 router to use the serial0 interface with Dial-on-Demand capabilities and set up NAT for things like telnet and ftp from outisde sources to internal machines.
I've succesfuly done this using 220.127.116.11/24 subnet for my internal network. The trouble I have is that if I try and change the subnet to say 18.104.22.168/24 or 22.214.171.124/24 (including routes and NAT configs), I can no longer telnet or ftp in from the outside.
My question is this, are there restrictions on what subnets you can use to do NAT? Why would one subnet work and not another?
You should use RFC 1918 networks internally: 10/8, 172.16/12, 0r 192.168/16.
NAT is just exchanging of source and/or destination address. PAT alo remaps/mux ports. Exchanging means while a packet pathes the router, it reads and exchanges the coresponding header fields, like src or dst IP addresses. Which IP addresses should not matter at all.
Make sure that the public NAT address you are using is routed to you by your provider.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...