redirect port help

fenixsgps · ‎05-24-2006

I am to try to redirect port 3500 of dialer0 for an IP 192.168.1.2 in the Lan whit the same port number. Already I moved in nat. E I created rules ACL. But I did not obtain.

Router cisco 836

My config:

!

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname cisco5000

!

boot-start-marker

boot-end-marker

!

aaa new-model

!

aaa authentication login default local

aaa authorization exec default local

aaa session-id common

ip subnet-zero

!

ip name-server xxx.xxx.xxx.xxx

ip cef

ip ips po max-events 100

vpdn enable

!

l2tp-class PTRP-L2TP

authentication

hello 50

password 7 xx

exit

!

pseudowire-class PTRP-PWC

encapsulation l2tpv2

protocol l2tpv2 PTRP-L2TP

ip local interface Dialer1

exit

!

no ftp-server write-enable

!

interface Ethernet0

description == LAN =

ip address 192.168.1.15 255.255.255.0

ip directed-broadcast

no ip proxy-arp

no ip mroute-cache

no keepalive

no cdp enable

exit

!

interface BRI0

no ip address

no cdp enable

exit

!

interface ATM0

no ip address

load-interval 30

no atm ilmi-keepalive

dsl operating-mode auto

exit

!

interface ATM0.1 point-to-point

pvc 0/35

encapsulation aal5snap

protocol ppp dialer

dialer pool-member 1

exit

!

interface FastEthernet1

no ip address

duplex auto

speed auto

exit

!

interface FastEthernet2

no ip address

duplex auto

speed auto

exit

!

interface FastEthernet3

no ip address

duplex auto

speed auto

exit

!

interface FastEthernet4

no ip address

duplex auto

speed auto

exit

!

interface Virtual-PPP1

description == Tunel L2TP BE-BT1 ==

ip address negotiated

backup delay 30 30

backup interface Virtual-PPP2

no cdp enable

ppp pap sent-username xx

pseudowire xxx.xxx.xxx.xxx pw-class PTRP-PWC

exit

!

interface Virtual-PPP2

description == Tunel L2TP BE ==

ip address negotiated

no cdp enable

ppp pap sent-username xx

pseudowire xxx.xxx.xxx.xxx 10 pw-class PTRP-PWC

exit

!

interface Dialer1

description == ADSL ==

ip address negotiated

ip access-group 111 in

no ip unreachables

encapsulation ppp

no ip route-cache cef

no ip route-cache

no ip mroute-cache

dialer pool 1

dialer remote-name xx

dialer idle-timeout 0

dialer-group 1

ppp pap sent-username xx

exit

!

ip classless

ip route 0.0.0.0 0.0.0.0 Virtual-PPP1 10

ip route 0.0.0.0 0.0.0.0 Virtual-PPP2 100

ip route xxx.xxx.xxx.xxx 255.255.255.255 Dialer1

!

ip http server

ip http authentication local

ip http secure-server

!

access-list 7 remark === Remote CONF ===

access-list 7 permit xxx.xxx.xxx.xxx

access-list 111 remark === internet ===

access-list 111 permit ip host xxx.xxx.xxx.xxx any

access-list 111 permit icmp any any echo-reply

access-list 111 permit icmp any any time-exceeded

access-list 111 permit ip host xxx.xxx.xxx.xxx any

access-list 111 deny ip any any

dialer-list 1 protocol ip permit

no cdp run

!

control-plane

exit

!

line con 0

no modem enable

transport preferred all

transport output all

stopbits 1

exit

!

line aux 0

transport preferred all

transport output all

exit

!

line vty 0 4

access-class 7 in

transport preferred all

transport input all

transport output all

exit

!

scheduler max-task-time 5000

scheduler interval 500

exit

!

end

fmeetz · ‎05-30-2006

content WEB_80

vip address 10.1.18.11

add service 1

protocol tcp

add service 2

port 80

advanced-balance sticky-srcip

active

In this example the request will come in through port 80, but for it to go out by port 3500 we can add the following command port xxxx (where xxxx is the number of the port) in a service. This will allow the CSS to redirect the request to the server on the desired port.

This is just an example to let you see how and where to configurate it.