we have a leased line from the german telekom with an official subnet 217.xxx.xxx.184 255.255.255.248.
The telekom installed a cisco router as their end point in our rack. This telekom cisco router is connected via crossover cable to our cisco router.
The telekom router has the first ip of the official subnet (217.xxx.xxx.185).
I have configured the fa 0/0 interface of our router, which is connected to the telekom router, with the second official ip address out of the subnet. On the fa 0/1 interface of our router, i have configured a local ip address of our LAN behind our cisco router.
We do not have access to the telekom router.
Here an extract out of our config:
int fa 0/0
ip address 217.xxx.xxx.186 255.255.255.248
int fa 0/1
ip address 192.168.xxx.253 255.255.255.0
ip route 0.0.0.0 0.0.0.0 217.xxx.xxx.185
ip route 217.xxx.xxx.187 255.255.255.255 FastEthernet 0/1
ip route 217.xxx.xxx.188 255.255.255.255 FastEthernet 0/1
ip route 217.xxx.xxx.189 255.255.255.255 FastEthernet 0/1
ip route 217.xxx.xxx.190 255.255.255.255 FastEthernet 0/1
ip subnet zero
There is nat enable and an access-list for incoming traffic. But i unset both for testing.
Traceroute from outside comes up to our cisco router, but not up to our systems behind our router. There is nothing between our router and our systems which could block the requests. Also a telnet to an open tcp port on our systems where a service is listen on, does not work.
I have configured the systems with an official ip address out of the subnet and once the router internal ip as gateway and once the router official ip as gateway. It seems that the systems find the gateway. But the router does not forward packets from outside to the systems.
Then i tried to configure the fa 0/1 interface with an additional official ip address, but cisco does not support such rubbish.
there is a misunderstanding. Our Servers have configured an official IP address out of the subnet as well. And their default gateway is the official ip address of our router. Between the servers and the router is only one switch.
i have tried to assign an official address on int fa 0/1 as secondary as shown below:
ip address 217.xxx.xxx.189 255.255.255.248 secondary
and got this message:
% 217.xxx.xxx.184 is assigned to FastEthernet0/0
So this is not possible.
Your static nat solution is an idea. But i thought that it would be possible to route the requests from extern to the intern servers with the official ips. I could not believe, that this is not possible in this situation...
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...