https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770634#M971295 <P>I feel like I understand what I'm doing, but can't figure out why this isn't working.</P><P></P><P>**********</P><P>interface Ethernet0/0</P><P> nameif Inside</P><P> security-level 100</P><P> ip address 192.168.254.254 255.255.255.0 </P><P>!</P><P>interface Ethernet0/3</P><P> nameif Outside</P><P> security-level 0</P><P> ip address dhcp </P><P>!</P><P>global (Outside) 1 interface</P><P>nat (Inside) 1 192.168.254.0 255.255.255.0</P><P>nat (Outside) 1 192.168.100.0 255.255.255.0</P><P>static (Inside,Outside) tcp interface 5000 192.168.254.1 telnet netmask 255.255.255.255 </P><P>access-group Outside_In in interface Outside</P><P>**********</P><P></P><P>192.168.254.1 is a router. If I do a debug ip packet on 192.168.254.1, I can see the telnet session coming in - but the place I'm telnet'ing from never sees a response.</P><P></P><P>Any ideas?</P><P></P><P>Thanks!</P><P>Tom</P> Mon, 11 Mar 2019 10:57:24 GMT tom.gill 2019-03-11T10:57:24Z https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770634#M971295 <P>I feel like I understand what I'm doing, but can't figure out why this isn't working.</P><P></P><P>**********</P><P>interface Ethernet0/0</P><P> nameif Inside</P><P> security-level 100</P><P> ip address 192.168.254.254 255.255.255.0 </P><P>!</P><P>interface Ethernet0/3</P><P> nameif Outside</P><P> security-level 0</P><P> ip address dhcp </P><P>!</P><P>global (Outside) 1 interface</P><P>nat (Inside) 1 192.168.254.0 255.255.255.0</P><P>nat (Outside) 1 192.168.100.0 255.255.255.0</P><P>static (Inside,Outside) tcp interface 5000 192.168.254.1 telnet netmask 255.255.255.255 </P><P>access-group Outside_In in interface Outside</P><P>**********</P><P></P><P>192.168.254.1 is a router. If I do a debug ip packet on 192.168.254.1, I can see the telnet session coming in - but the place I'm telnet'ing from never sees a response.</P><P></P><P>Any ideas?</P><P></P><P>Thanks!</P><P>Tom</P> Mon, 11 Mar 2019 10:57:24 GMT https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770634#M971295 tom.gill 2019-03-11T10:57:24Z https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770635#M971296 <HTML><HEAD></HEAD><BODY><P>what does the following line do (or what do you think it does)?</P><P>nat (Outside) 1 192.168.100.0 255.255.255.0 </P><P></P><P>what does access-list Outside_In look like?</P></BODY></HTML> Tue, 14 Aug 2007 01:35:24 GMT https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770635#M971296 srue 2007-08-14T01:35:24Z https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770636#M971297 <HTML><HEAD></HEAD><BODY><P>Oops....sorry.</P><P></P><P>nat (Outside) 1 192.168.100.0 255.255.255.0</P><P>This was for remote VPN users going back out to the Internet. It has been removed to help troubleshoot.</P><P></P><P>Here is the access-list I forgot to include:</P><P>access-list Outside_In extended permit tcp any interface Outside eq 5000</P><P></P><P>Thanks!</P></BODY></HTML> Tue, 14 Aug 2007 02:09:25 GMT https://community.cisco.com/t5/network-security/port-redirection-question/m-p/770636#M971297 tom.gill 2007-08-14T02:09:25Z