routing from internal local ip to internal global ip

kaushal · ‎07-12-2002

hello

this is my second question for the day!

i'm having a cisco 805, with LAN on 192.168 private ip range.

for the ethernet interface, i've bound 2 ips (one private, and one public) because we have one machine within the network that has a public ip, and it needs to communicate with the internet. so as its gateway on the router, it uses the public ip bound to the router's ethernet interface.

there is a web server inside the network with private ip (192.168.0.2). NAT on the router maps a public ip to 192.168.0.2 so that outside users can access this web server (say www.abc.com).

my problem is this: users who are on the LAN cannot type www.abc.com and access this web server. i tried the following on the router but it did not work.

ip route <global ip> <subnet mask> ethernet 0

however, when a traceroute is done on abc.com from a machine on the LAN, it completes successfully on 1 hop!

any ideas as to how i can get the router to route packets from inside to another machine on the inside using its NATed ip?

many thanks

kaushal

Gilles Dufour · ‎07-15-2002

since an interface can only be inside or outside, the only way you could fix

this problem is by having another ehternet interface and configure it as nat outside.

However, I'm curious to know why you need to setup your server with a public ip address.

You could use a private ip address and use a static nat translation on the router so the server is reachable from the outside.

kaushal · ‎07-15-2002

hi

the web server *is* having a private ip, and there is a natting which maps a global ip to this private ip. therefore the server is reachable from outside.

my problem is, internal users cannot type on the browser the full domain name (which gets translated to the global ip by our dns) and access the site.

hope i'm being clear!

kaushal