Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Red

IP NAT - how to translate source address?

I have set up NAT on the border router, so the outside network can remote desktop to a computer in the inside network.

This is working fine. Configuration as below:

interface fa0

ip nat inside

interface fa1

ip nat outside

ip nat inside source static tcp 192.168.1.100 3389 64.101.1.25 3389 extendable

Now, I want to fine tune this NAT, so the traffic to the RDP (terminal server) will have a source IP of my border router's internal interface. How shall I configure?

Thanks!

Michael

2 REPLIES
Hall of Fame Super Blue

Re: IP NAT - how to translate source address?

Michael

As far as i am aware you cannot use PAT for outside to inside on a router. You can use a NAT pool to translate outside addresses to ie.

ip nat pool OUTIN 172.16.10.1 172.16.10.254 netmask 255.255.255.0

ip nat outside source list 101 pool OUTIN

access-list 101 permit tcp any host 64.101.1.25 eq 3389

You can make the pool as big as you want but this still may not be any use to you. It depends on how many different source IP's will be RDP'ing to the server at one time.

If you do try this don't forget that your internal network needs to know where to route the traffic for 172.16.10.x to ie. back to your border router.

Jon

Red

Re: IP NAT - how to translate source address?

Thank you very much for the info.

Michael

376
Views
5
Helpful
2
Replies