Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
844
Views
0
Helpful
5
Replies

Access-list and NAT for accessing from LAN network to Camera inside

fatonk
Level 1
Level 1

‎07-11-2019 03:58 PM

Here are some access lists and NAT rules to access into cameras from outside. But I need access lists and NAT rules to access to cameras from inside network, because with these rules below cannot see the cameras from LAN network. I need any help pls?!

 

object network Lan
subnet 192.168.3.0 255.255.255.0

 

object network Camera-DVR-1-80
host 192.168.3.41

object network Camera-DVR-1-8000
host 192.168.3.41

 

access-list outside_access_in extended permit tcp any host 192.168.3.41 eq www

access-list outside_access_in extended permit tcp any host 192.168.3.41 eq 8000

 

object network Camera-DVR-1-80
nat (inside,outside) static interface service tcp www www

object network Camera-DVR-1-8000

nat (inside,outside) static interface service tcp 8000 8000

 

So, if I am outside  I can watch the Cameras, but when I am inside LAN 192.168.3.0/24 it's impossible to see any Camera opened?!

 

Thanks

Labels:
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎07-11-2019 04:05 PM

If you are in the LAN in the same network you should able to access the Camera 

 

what is your LAN IP address Gateway, is this point to FW IP as Gateway ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

fatonk
Level 1
Level 1
In response to balaji.bandi

‎07-11-2019 04:13 PM

No, i cannot see from Lan. 

My gateway is 192.168.3.1 and this is the point of FW IP gateway

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to fatonk

‎07-11-2019 04:29 PM

Try "same-security-traffic permit intra-interface"

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

fatonk
Level 1
Level 1
In response to balaji.bandi

‎07-11-2019 10:48 PM

Thanks for this idea, but I thought to find the access list and nat rules that allow the me to connect from the same LAN to the cameras in that Subnet?!

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to fatonk

‎07-11-2019 11:46 PM

In the same Lan you do not need NAT to Configured, since you are connecting using same subnet. You need to ACL should be in place ( i was in impression you already have them) apart from the command i was referred.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card