Showing results for 
Search instead for 
Did you mean: 

Cisco 827 ADSL Router With NAT and PAT

Level 1
Level 1

I have an 827 ADSL router connected to my DSL service provider. Before I had this router, I had a linksys router providing all the NAT and port forwarding functions. Right now I have NAT configured for all my internal computers to translate to my static ISP provided IP address. And I also have NAT translating outside requests for tcp port 80 to my internal web server. This works well except that the web server has a firewall and blocks the request because the source address is an outside address (Internet). I remember on the old linksys router, the firewall would not block this request because it looked like a request from the Ethernet or internal IP address. Maybe this is a security flaw with linksys products, but I was wondering if anyone has a suggestion for me to get around the problem. Below is the configuration on the router, minus secure information:

interface Ethernet0

ip address

ip nat inside


interface ATM0

ip address X.X.X.1

ip nat outside


ip nat inside source list 101 interface ATM0 overload

ip nat inside source static tcp 80 X.X.X.1 80 extendable


access-list 101 permit ip any

Also, does anyone have any experience with adding access lists and ip inspect commands in this configuration without affecting the outside connections from getting to the internal web server?

Thanks for any help!

1 Reply 1

Level 4
Level 4

Here is a url with more information on configuring access lists:

To permit traffic to your webserver, you will need to configure an acl and permit traffic to tcp port 80. Apply this acl inbound on the ATM interface. (note - there is an implicit deny any any at the end of the acl so you will have to permit all the traffic through your acl that you want or else it will be denied)