Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1057
Views
0
Helpful
1
Replies

Allow port 22 access from source WAN IP to destination WAN IP going through to internal LAN IP of the server

Rizwan2021
Level 1
Level 1

‎05-16-2021 06:18 PM

Hi Guys,

I am reaching out for some help in making some configuring changes to a cisco 2901 router.
I am looking to make a firewall change to allow SFTP (port 22) access on 27.127.192.15 through to 10.0.80.12 server from WAN IP 13.236.8.103.

Would highly appreciate any assistance on what commands would I need to add into the router's configuration to achieve the above objectives.

Labels:
0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎05-17-2021 02:40 AM

You can use below command for port-foward :

 

ip nat inside source static tcp 10.0.80.1 22 27.127.192.15 22

 

if you like restrict IP - 13.236.8.103

 

interface Gi x/x
 ip access-group 110 in
!
access-list 110 permit host 13.236.8.103 eq ssh

 

 

here is reference for NAT and ACL

https://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/13772-12.html

 

https://www.cisco.com/c/en/us/support/docs/ip/access-lists/26448-ACLsamples.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents