Accept Inbound Traffic To Servers Behind NAT

Written by Yanurmal on November 12, 2008 – 8:09 am -

This config to make inbound traffic to a web server in local network behind NAT.

Req:
- Private IP Address plan (eg. 192.168.1.0/24)
- Public IP Address plan (eg.100.1.2.3/30)
- Web Server (port 80) IP Address (eg.192.168.1.10)
- Standard NAT Config work properly

All incoming web traffic from the Internet that comes to 100.1.2.3 will be forwarded to 192.168.1.10

hostname CiscoNAT
!
enable secret 5 KjhKJGkj$57JHkkl98KJH
!
ip subnet zero
!
interface FastEthernet0/0
description LAN Interface
ip address 192.168.1.254 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface Serial0
description WAN Interface
ip address 100.1.2.3 255.255.255.248
ip nat outside
ip access-group 101 in
!
ip nat inside source static 192.168.1.10 80 interface Serial0
!
access-list 101 deny ip any host 255.255.255.255
access-list 101 permit tcp any any eq 80
!
line con0
line vty 0 4
login
password cisco
!
end

Popularity: unranked

Share This Post
No Comments comment | Posted in » Firewall, Router

Activate ASDM as GUI Interface for Cisco ASA/PIX Firewall

January 7, 2008 – 3:44 pm

pixfirewall> enable Password: pixfirewall# configure terminal pixfirewall(Config)# interface ethernet1 pixfirewall(Config-if)# nameif inside pixfirewall(Config-if)# ip address 192.168.1.1 255.255.255.0 pixfirewall(Config-if)# no shutdown pixfirewall(Config-if)# Activate ASDM and enable http server. pixfirewall(Config)# asdm image flash:/asdm.bin. pixfirewall(Config)# http server enable. Open a connection for your PC. ...

Setup IP Address On An Interface

January 7, 2008 – 3:24 pm

After successfull login as priviledge mode, follow this command to assign an IP address to related interface: Router>enable Password: Router#config terminal Router(config)# For Fast Ethernet 0 Router(config)#interface Fast 0 Router(config-if)#ip address 192.168.1.1 255.255.255.0 And for Serial 0 Router(config)#interface Serial 0 Router(config-if)#ip ...

Create Cisco VPN Tunnel over Internet

January 1, 2008 – 1:49 am

We will create VPN tunnel for connection from SiteA to SIteB over internet connection. Requirement: Internet connection each sites. 2 Cisco router with 1 LAN interface (Ethernet) and 1 WAN interface (Serial). IOS with ...

Running VOIP on Cisco Router

January 1, 2008 – 1:32 am

In this sample config we will create a voip communication over cisco router. Requirement: - 2 units Cisco router with 1 VIC2FXS and 1 WAN interface - WAN link - 1 Analog Phone Handset (2 ...

Secure Internet Connection Behind NAT (Network Address Translation) Router

January 1, 2008 – 1:08 am

You can connect to internet securely behind NATed router as firewall. Requirement: - Cisco Router with 1 LAN Interface (Ethernet) and 1 WAN Interface (Serial). - Internet connection. hostname InternetRouter ! enable password 123 ! no ip name-server ! interface ...

Cisco Configmaker

December 31, 2007 – 6:01 pm

This is an old software that can generate configuration for low and medium cisco product. If you are a beginer, you will love it. All simple config can be generated ...

Cisco Basic Command

December 31, 2007 – 2:37 pm

enable Enables higher privilege level access, such as privileged EXEC mode. At this level you can configure your cisco device without restriction. Prompt will change from > to # Example: Router> enable Password: [type password and ...

Console Cable

December 31, 2007 – 7:55 am

Console cable usually shipped with cisco device. This cable pluged to PC serial port (RS232 connector) and Cisco console port (RJ45 connector). Or  + No additional accessories needed, with this cable your cisco ...

Cisco Password Recovery Procedures

December 30, 2007 – 10:24 am

Requirement: - Windows Hyper Terminal connection to console port.  Cisco 806, 826, 827, 828, 831, 836 and 837 Series Routers Use the power switch in order to turn off the router, and then ...

Cisco Router Dial On-Demand using Analog Modem

December 30, 2007 – 9:42 am

This connection use an analog modem over PSTN line as WAN link. A connection will created automatically when one of site need a communication to remote site. And disconnect automatically ...

Ads

Find entries :