05-24-2006 01:11 AM - edited 03-03-2019 03:21 AM
I am to try to redirect port 3500 of dialer0 for an IP 192.168.1.2 in the Lan whit the same port number. Already I moved in nat. E I created rules ACL. But I did not obtain.
Router cisco 836
My config:
!
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname cisco5000
!
boot-start-marker
boot-end-marker
!
!
aaa new-model
!
!
aaa authentication login default local
aaa authorization exec default local
aaa session-id common
ip subnet-zero
!
!
!
!
ip name-server xxx.xxx.xxx.xxx
ip name-server xxx.xxx.xxx.xxx
ip cef
ip ips po max-events 100
vpdn enable
!
l2tp-class PTRP-L2TP
authentication
hello 50
password 7 xx
exit
!
pseudowire-class PTRP-PWC
encapsulation l2tpv2
protocol l2tpv2 PTRP-L2TP
ip local interface Dialer1
exit
!
no ftp-server write-enable
!
!
!
!
!
!
!
interface Ethernet0
description == LAN =
ip address 192.168.1.15 255.255.255.0
ip directed-broadcast
no ip proxy-arp
no ip mroute-cache
no keepalive
no cdp enable
exit
!
interface BRI0
no ip address
no cdp enable
exit
!
interface ATM0
no ip address
load-interval 30
no atm ilmi-keepalive
dsl operating-mode auto
exit
!
interface ATM0.1 point-to-point
pvc 0/35
encapsulation aal5snap
protocol ppp dialer
dialer pool-member 1
exit
!
!
interface FastEthernet1
no ip address
duplex auto
speed auto
exit
!
interface FastEthernet2
no ip address
duplex auto
speed auto
exit
!
interface FastEthernet3
no ip address
duplex auto
speed auto
exit
!
interface FastEthernet4
no ip address
duplex auto
speed auto
exit
!
interface Virtual-PPP1
description == Tunel L2TP BE-BT1 ==
ip address negotiated
backup delay 30 30
backup interface Virtual-PPP2
no cdp enable
ppp pap sent-username xx
pseudowire xxx.xxx.xxx.xxx pw-class PTRP-PWC
exit
!
interface Virtual-PPP2
description == Tunel L2TP BE ==
ip address negotiated
no cdp enable
ppp pap sent-username xx
pseudowire xxx.xxx.xxx.xxx 10 pw-class PTRP-PWC
exit
!
interface Dialer1
description == ADSL ==
ip address negotiated
ip access-group 111 in
no ip unreachables
encapsulation ppp
no ip route-cache cef
no ip route-cache
no ip mroute-cache
dialer pool 1
dialer remote-name xx
dialer idle-timeout 0
dialer-group 1
ppp pap sent-username xx
exit
!
ip classless
ip route 0.0.0.0 0.0.0.0 Virtual-PPP1 10
ip route 0.0.0.0 0.0.0.0 Virtual-PPP2 100
ip route xxx.xxx.xxx.xxx 255.255.255.255 Dialer1
ip route xxx.xxx.xxx.xxx 255.255.255.255 Dialer1
!
ip http server
ip http authentication local
ip http secure-server
!
access-list 7 remark === Remote CONF ===
access-list 7 permit xxx.xxx.xxx.xxx
access-list 7 permit xxx.xxx.xxx.xxx
access-list 111 remark === internet ===
access-list 111 permit ip host xxx.xxx.xxx.xxx any
access-list 111 permit ip host xxx.xxx.xxx.xxx any
access-list 111 permit icmp any any echo-reply
access-list 111 permit icmp any any time-exceeded
access-list 111 permit ip host xxx.xxx.xxx.xxx any
access-list 111 permit ip host xxx.xxx.xxx.xxx any
access-list 111 deny ip any any
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
exit
!
!
line con 0
no modem enable
transport preferred all
transport output all
stopbits 1
exit
!
line aux 0
transport preferred all
transport output all
exit
!
line vty 0 4
access-class 7 in
transport preferred all
transport input all
transport output all
exit
!
scheduler max-task-time 5000
scheduler interval 500
exit
!
!
!
end
05-30-2006 05:57 AM
content WEB_80
vip address 10.1.18.11
add service 1
protocol tcp
add service 2
port 80
advanced-balance sticky-srcip
active
In this example the request will come in through port 80, but for it to go out by port 3500 we can add the following command port xxxx (where xxxx is the number of the port) in a service. This will allow the CSS to redirect the request to the server on the desired port.
This is just an example to let you see how and where to configurate it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide