Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
690
Views
0
Helpful
4
Replies

Is this possible with NAT?

Go to solution
John Blakley
VIP Alumni
VIP Alumni

‎11-30-2009 10:48 AM - edited ‎03-04-2019 06:49 AM

First of all, it's been quite a while since I've been on the boards, and WOW, it's changed.

Now to my question. I have a device that needs certain ports forwarded to it, but I'll have another device that will need the same ports forwarded as well. I'm not sure how I'll be able to handle this. Currently, I have:

ip nat inside source static udp 10.20.1.40 1254 interface FastEthernet4 1254

I'll also need the same port forwarded to another address on a different subnet, but I think the router is going to get confused since there's only one public address. I've got an acl on Fa4 that allows these ports in, but it's not "opening" up to any device on the inside. Any other suggestions to get this to work?

I don't have the option for another public address, or that would solve all of my problems. :-(

Thanks!

John

HTH, John *** Please rate all useful posts ***
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎11-30-2009 10:54 AM 

j.blakley wrote:
First of all, it's been quite a while since I've been on the boards, and WOW, it's changed.
Now to my question. I have a device that needs certain ports forwarded to it, but I'll have another device that will need the same ports forwarded as well. I'm not sure how I'll be able to handle this. Currently, I have:
ip nat inside source static udp 10.20.1.40 1254 interface FastEthernet4 1254
I'll also need the same port forwarded to another address on a different subnet, but I think the router is going to get confused since there's only one public address. I've got an acl on Fa4 that allows these ports in, but it's not "opening" up to any device on the inside. Any other suggestions to get this to work?
I don't have the option for another public address, or that would solve all of my problems. :-(
Thanks!
John

John

Yes, it's quite different from the old NetPro

Short answer to your question is you can't. The router would have no way of knowing which address to forward it to. The only thing you can do is run the service on a different port on one of the devices and then you can do a different port forward translation. This is fine if it is for one or two external clients connecting to the device because you can tell them to change the port but obviously with a web server accessed from the internet it is completely impractical.

Jon

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎11-30-2009 10:54 AM 

j.blakley wrote:
First of all, it's been quite a while since I've been on the boards, and WOW, it's changed.
Now to my question. I have a device that needs certain ports forwarded to it, but I'll have another device that will need the same ports forwarded as well. I'm not sure how I'll be able to handle this. Currently, I have:
ip nat inside source static udp 10.20.1.40 1254 interface FastEthernet4 1254
I'll also need the same port forwarded to another address on a different subnet, but I think the router is going to get confused since there's only one public address. I've got an acl on Fa4 that allows these ports in, but it's not "opening" up to any device on the inside. Any other suggestions to get this to work?
I don't have the option for another public address, or that would solve all of my problems. :-(
Thanks!
John

John

Yes, it's quite different from the old NetPro

Short answer to your question is you can't. The router would have no way of knowing which address to forward it to. The only thing you can do is run the service on a different port on one of the devices and then you can do a different port forward translation. This is fine if it is for one or two external clients connecting to the device because you can tell them to change the port but obviously with a web server accessed from the internet it is completely impractical.

Jon

0 Helpful

Go to solution
John Blakley
VIP Alumni
VIP Alumni
In response to Jon Marshall

‎11-30-2009 11:14 AM

Well, that's what I thought. Okay, so here's my problem

I have an 871W. I run an XBox 360 behind it, and it has to have open NAT to operate correctly. I bought another XBox for my son for Christmas, and I'm going to need to set this one up different because he connects to an ASA on a different subnet (yeah, it's all in my house). So, it looks like:

   871W

     |  |

ASA Xbox360 (mine)

    |

Xbox360 (his)

I'm not sure the best way to set the 360 up. If I have the ports just opened, then it says it's "Strict NAT", but if I port forward, then all is good. I'm wondering if this other Xbox is going to work online, OR if I need to replace my Cisco with a Linksys that supports UPnP or something.

Anyone out there with two Xbox's behind their router?

HTH, John *** Please rate all useful posts ***
0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to John Blakley

‎11-30-2009 11:21 AM

Hello John,

>> yeah, it's all in my house

what a big house you have and safe (from a networking point of view) 

Best Regards

Giuseppe

0 Helpful

Go to solution
John Blakley
VIP Alumni
VIP Alumni
In response to Giuseppe Larosa

‎11-30-2009 11:31 AM

LOL! No, I just didn't have anywhere to put the equipment.

HTH, John *** Please rate all useful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card