cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
676
Views
0
Helpful
1
Replies

Setting up a server behind NAT on 871W

Crowley262
Level 1
Level 1

Hello all, I have been searching for quite some time and every command I try just doesn't seem to work. I will post the config below for review. I am trying to open port 25565 to the outside so people can join a server I am hosting. NAT line in bold below

If I have done something wrong in the post or am in the wrong section I apologize.

PandaRTR(config)#do sh run

Building configuration...

Current configuration : 2948 bytes

!

! Last configuration change at 06:27:30 UTC Thu Feb 20 2014 by pcrowley

! NVRAM config last updated at 23:55:33 UTC Sun Jan 26 2014

!

version 12.4

service config

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname PandaRTR

!

boot-start-marker

boot-end-marker

!

logging message-counter syslog

logging buffered 4096

enable secret 5

!

no aaa new-model

!

!

dot11 syslog

!

dot11 ssid Panda1

authentication open

authentication key-management wpa

guest-mode

wpa-psk ascii 7

!

no ip source-route

no ip gratuitous-arps

!

!

ip dhcp excluded-address 192.168.1.1 192.168.1.5

!

ip dhcp pool Internal

   import all

   network 192.168.1.0 255.255.255.0

   domain-name Panda

   dns-server 8.8.4.4

   default-router 192.168.1.1

!

!

ip cef

no ip bootp server

ip domain name Panda

no ipv6 cef

!

multilink bundle-name authenticated

!

!

!

username pcrowley password 7!

!

!

archive

log config

  hidekeys

!

!

ip ssh time-out 60

ip ssh authentication-retries 2

ip ssh version 2

!

bridge irb

!

!

interface FastEthernet0

!

interface FastEthernet1

!

interface FastEthernet2

!

interface FastEthernet3

!

interface FastEthernet4

ip address dhcp

no ip redirects

no ip unreachables

no ip proxy-arp

ip nat outside

ip virtual-reassembly

speed auto

full-duplex

!

interface Dot11Radio0

no ip address

no ip redirects

no ip unreachables

no ip proxy-arp

!

encryption mode ciphers aes-ccm

!

ssid Panda1

!

speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0

station-role root

bridge-group 1

bridge-group 1 subscriber-loop-control

bridge-group 1 spanning-disabled

bridge-group 1 block-unknown-source

no bridge-group 1 source-learning

no bridge-group 1 unicast-flooding

!

interface Vlan1

no ip address

no ip redirects

no ip unreachables

no ip proxy-arp

ip nat inside

ip virtual-reassembly

bridge-group 1

!

interface Vlan2

no ip address

!

interface BVI1

ip address 192.168.1.1 255.255.255.0

ip nat inside

ip virtual-reassembly

!

ip forward-protocol nd

no ip http server

no ip http secure-server

!

!

ip dns server

ip nat inside source list 101 interface FastEthernet4 overload

ip nat inside source static tcp 192.168.1.4 25565 interface FastEthernet4 25565

!

logging trap debugging

access-list 100 permit udp any any eq bootpc

access-list 101 permit ip 192.168.1.0 0.0.0.255 any

access-list 102 permit tcp any any eq 25565

access-list 103 permit tcp any eq 25565 any eq 25565

access-list 104 permit udp any any eq 25565

no cdp run

!

!

!

!

!

control-plane

!

bridge 1 protocol dec

bridge 1 route ip

banner motd ^C Unauthorised access is prohibited^C

!

line con 0

no modem enable

line aux 0

line vty 0 3

password

login local

transport input ssh

line vty 4

login

!

scheduler max-task-time 5000

ntp server pool.ntp.org

end

1 Reply 1

Rijo Joseph
Level 1
Level 1

Please change the nat for server access list above the default nat acl and it should work fine

Sent from Cisco Technical Support iPad App

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: