cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1051
Views
0
Helpful
1
Replies

Allow port 22 access from source WAN IP to destination WAN IP going through to internal LAN IP of the server

Rizwan2021
Level 1
Level 1

Hi Guys,

I am reaching out for some help in making some configuring changes to a cisco 2901 router.
I am looking to make a firewall change to allow SFTP (port 22) access on 27.127.192.15 through to 10.0.80.12 server from WAN IP 13.236.8.103.

Would highly appreciate any assistance on what commands would I need to add into the router's configuration to achieve the above objectives.

1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

You can use below command for port-foward :

 

ip nat inside source static tcp 10.0.80.1 22 27.127.192.15 22

 

if you like restrict IP - 13.236.8.103

 

interface Gi x/x
 ip access-group 110 in
!
access-list 110 permit host 13.236.8.103 eq ssh

 

 

here is reference for NAT and ACL

https://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/13772-12.html

 

https://www.cisco.com/c/en/us/support/docs/ip/access-lists/26448-ACLsamples.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: