Accept Inbound Traffic Behind NAT

Written by Yanurmal on November 12, 2008 – 8:09 am -

This config to make inbound traffic to a web server in local network behind NAT.

Req:
- Private IP Address plan (eg. 192.168.1.0/24)
- Public IP Address plan (eg.100.1.2.3/30)
- Web Server (port 80) IP Address (eg.192.168.1.10)
- Standard NAT Config work properly

All incoming web traffic from the Internet that comes to 100.1.2.3 will be forwarded to 192.168.1.10

hostname CiscoNAT
!
enable secret 5 KjhKJGkj$57JHkkl98KJH
!
ip subnet zero
!
interface FastEthernet0/0
description LAN Interface
ip address 192.168.1.254 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface Serial0
description WAN Interface
ip address 100.1.2.3 255.255.255.248
ip nat outside
ip access-group 101 in
!
ip nat inside source static 192.168.1.10 80 interface Serial0
!
access-list 101 deny ip any host 255.255.255.255
access-list 101 permit tcp any any eq 80
!
line con0
line vty 0 4
login
password cisco
!
end

Popularity: 2%

Share This Post
No Comments comment | Posted in » Misc

Break Key Combinations For Cisco Password Recovery

October 15, 2008 – 7:01 am

The break key combinations is to login to ROMMON without password authentication. This function is usually to recovery the lost password. You need to access the router phisically and pluged console ...

Quickterm is Hyperterminal equivalent for Mac

August 30, 2008 – 12:39 pm

To access Cisco console from Mac you can use QuicTerm application that very similar function with windows hyperterminal. [caption id="attachment_69" align="alignnone" width="300" caption="Quickterm"][/caption] [caption id="attachment_70" align="alignnone" width="300" caption="Quickterm Port Setting"][/caption] Limitations and Bugs QuickTerm ...

Use USB to Serial Adapter to access Cisco console

August 30, 2008 – 6:06 am

Today brand new laptop not shipped with serial (RS232) port that we need to access Cisco console via hyperterminal. [caption id="attachment_63" align="alignnone" width="300" caption="USB to Serial adapter"][/caption] USB to Serial adapter can ...

Cisco Quality of Service (QoS)

August 29, 2008 – 5:53 pm

Below is Cisco QoS sample config. In this sample config I created two class-map of traffic. Data and voice. Router_A ! service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Router_A ! resource policy ! ip ...

Change Cisco Password

February 8, 2008 – 9:02 am

Below is command to change cisco password or to add new password. You need user priviledge mode to execute this command. Router> Router>enable Password: Router# Router#config terminal Router(config)#enable secret new_password_here Router(config)#exit Router#copy running start Router#exit

CLI Simple Cisco ASA/PIX Config

February 2, 2008 – 8:25 am

This config is for simple config ASA/PIX firewall with 2 network interface. One for outside (Internet) and other for inside (LAN). All traffic from internal to external is accepted. All ...

Restore Or Install New IOS From TFTP Server to Cisco Router

January 31, 2008 – 11:17 pm

Restore or Install new flash from TFTP server to Cisco Router. In this restore process existing IOS will erased completely before install the new IOS image file. Make sure you ...

Backup Cisco Router IOS to TFTP Server

January 31, 2008 – 11:06 pm

Backup Cisco IOS to TFTP server and you can restore it later when your IOS damage. Requirement: - PC with TFTP Server (IP Address 192.168.1.1) - Network connection to Cisco Router Router> Router>enable  Password: Router#copy flash tftp Source ...

ISDN PPP Dialup as WAN Connection

January 9, 2008 – 5:22 pm

We will create a WAN connection over ISDN multilink dialup. An ISDN have two channel 128kbps. We will dial a channel first and then dial last one once bandwidth usage reach ...

Ads

Find entries :