Question:
I would be very thankful if Cisco 3560V2 Price someone could
help me out with a simple question, that made me stuck.
I have Cisco 2910 router that have 3
interfaces:
g0/0 - LAN
g0/1 - WAN1
g0/2 - WAN2
I would like to configure port forwarding
in such way that connections to both WAN interface on identical ports will be
redirected to a single host in a private network. When I issue command:
ip nat inside source static tcp
10.10.10 .X 8080 interface g0/1 8080
everything is fine, until I add the second
command:
ip nat inside source static tcp
10.10.10 .X 8080 interface g0/2 8080
After that, the first statement is just
replaced by the second one, not added to configuration.
It would be great if someone could give me
an advice!
Answer:
You need two IP-adresses on your server and
route-maps to control the return-traffic:
interface Gig0/0
ip
policy route-map Gig0/0-IN
You need two NAT-statements for the two IPs
on the server:
ip nat inside source static tcp
10.10.10 .101 8080 interface Gig0/1 8080
ip nat inside source static tcp
10.10.10 .102 8080 interface Gig0/2 8080
With the help of PBR you force the
return-traffic to the right link:
ip access-list extended TRAFFIC-FROM-10.10.10 .101
permit tcp host 10.10.10 .101 eq 8080
any
ip access-list extended TRAFFIC-FROM-10.10.10 .102
permit tcp host 10.10.10 .102 eq 8080
any
!
route-map Gig0/0-IN permit 10
match ip address TRAFFIC-FROM-10.10.10 .101
set
interface Gig0/1
!
route-map Gig0/0-IN permit 20
match ip address TRAFFIC-FROM-10.10.10 .102
set
interface Gig0/2
--
Don't stop after you've improved your
network! Improve the world by lending money to the working poor:
For more Cisco Switch news about Price ans Specification, you can click here.
没有评论:
发表评论