Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2103
Views
0
Helpful
2
Replies

NAT out and back in on the same interface

kevenpenner
Level 1
Level 1

‎04-29-2013 12:47 PM - edited ‎03-03-2019 07:03 AM

I have a 1800 router and am trying to get this config going. Currently it cannot open a socket to the other host. I have two mail servers behind the router on the same lan network but translated to different public IP's. traffic from one server to the next fails. See diagram below. MX records point to public IP's so I need to allow traffic to go to the outside interface and back into the network.

http://i1338.photobucket.com/albums/o683/SnakeDoctor45/Cisco_zps157368cc.jpg

Labels:
0 Helpful
2 Replies 2

Dennis Mink
VIP Alumni
VIP Alumni

‎05-05-2013 11:28 PM

you are asking about NAT Hairpinnig, yes it can be done:

https://supportforums.cisco.com/thread/1003238



=============================
Please remember to rate useful posts, by clicking on the stars below. 

=============================

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful

Marwan ALshawi
VIP Alumni
VIP Alumni

‎05-31-2013 02:13 PM

FWs uses DNS doctoring not sure if you can use it with IOS

another option is you can use NAT on stick with a policy that NAT only communication between mail servers from private to public IPs

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml

you need to use a loopback interface and a policy based routing to get it working with the NAT

hope this help

0 Helpful
Customers Also Viewed These Support Documents