Hi,

where can I get the running config as the whole installation is done by another vendor.

Hi,

connect to router with console cable then type enable enter the privileged password then type sh run and then press enter multiple times until the end of this config then select all copy and paste and post here.

Regards.

Alain.

Hi Cadet alain,

I tried connecting my router with a console cable and use putty to connect it. However, after waiting for a long time the screen is still blank. Any idea how to fix this?

Sorry I'm very new to all these stuff.

Hi Cadet Alain,

I'm able to extract them out already.

Following are the config for NAT. Is there anything wrong here?

ip forward-protocol nd

ip http server

ip http access-class 23

ip http authentication local

ip http secure-server

ip http timeout-policy idle 60 life 86400 requests 10000

!

ip dns server

ip nat inside source list 1 interface FastEthernet4 overload

ip nat inside source static tcp 192.168.1.39 21 interface FastEthernet4 21

ip nat inside source static tcp 192.168.1.201 1723 interface FastEthernet4 1723

ip nat inside source static tcp 192.168.1.39 5050 interface FastEthernet4 5050

ip route 0.0.0.0 0.0.0.0 xxx.xx.xxx.xxx

!

access-list 1 permit 192.168.1.0 0.0.0.255

no cdp run

Isaac,

I don't see a statement in your config point port 80 on interface f4 to your web server. Have you put the statement in already? If not do this:

ip nat inside source static tcp (WEBSERVER LAN IP ADDRESS) 80 interface FastEthernet4 80

When you say all the firewalls are configured. How'd you mean? If you mean that there is zone based firewall of access-list based firewall on the router then you need to post the configs for that as well - as it could well be blocking traffic.

Tim

Hi,

The firewall I meant is the Window Server 2008 R2's firewall which host the web server. I tried typing the syntex you gave me but it didn't work. It says % Invalid input detected at '^' marker which is pointing to ip's P

Thanks in advanced

Hi

    Please confirm me that you can connect web server with tcp/5050 in local lan.  What do you do when trying to connect web server with tcp/5050 in the internet? Please post entire confifuration,excluding sensitive information

Toshi

Sent from Cisco Technical Support iPhone App

Hi Toshi,

Yes, I can connect the web server through the LAN connection via http://xxx.xxx.x.xx:5050

When trying to connect web server with tcp/5050 in the internet, I type in the public IP address and port 5050 on the browser like http://xxx.xx.xx.xxx:5050

However, it does not response to anything.

Which configuration should I post it to you and please advice on the command as I am new to this.

Thank you.

Hi,

   Please don't post the exact public ip address. Just modify it. First,we need to see translations on the router first. Please post the entire configuration,excluding sensitive information.

Toshi

Hi Toshi,

which configuration you are referring to here? show ip nat translation and netstat -an?

Thanks

Hi,

   "show running"

Toshi

Hi Toshi,

Here is the configuration

ip source-route

!

!

ip dhcp excluded-address 192.168.1.1

ip dhcp excluded-address 192.168.1.101 192.168.1.254

!

ip dhcp pool LAN_POOL

   network 192.168.1.0 255.255.255.0

   default-router 192.168.1.1

   dns-server 192.168.1.1

   domain-name Belkin

!

!

ip cef

ip domain name xxx.xxx.xxx

ip name-server xxx.xxx.xxx.xxx

ip name-server xxx.xxx.xxx.xxx

no ipv6 cef

!

!

license udi pid CISCO881-K9 sn FHK143874UW

!

!

username xxx privilege 15 secret 5 $1$YSYH$cq4FYQv9RTXbF2dKPQBWy1

!

!

!

!

!

!

!

!

!

interface FastEthernet0

!

interface FastEthernet1

!

interface FastEthernet2

!

interface FastEthernet3

!

interface FastEthernet4

description 00062299sng$ES_WAN$

ip address xxx.xxx.xxx.xxx 255.255.255.252

ip nat outside

ip virtual-reassembly

duplex full

speed 100

!

interface Vlan1

description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$

ip address xxx.xxx.xxx.xxx 255.255.255.240 secondary

ip address 192.168.1.1 255.255.255.0

ip nat inside

ip virtual-reassembly

ip tcp adjust-mss 1452

!

ip forward-protocol nd

ip http server

ip http access-class 23

ip http authentication local

ip http secure-server

ip http timeout-policy idle 60 life 86400 requests 10000

!

ip dns server

ip nat inside source list 1 interface FastEthernet4 overload

ip nat inside source static tcp 192.168.1.39 21 interface FastEthernet4 21

ip nat inside source static tcp 192.168.1.201 1723 interface FastEthernet4 1723

ip nat inside source static tcp 192.168.1.39 5050 interface FastEthernet4 5050

ip route 0.0.0.0 0.0.0.0 xxx.xxx.xxx.xxx

!

access-list 1 permit 192.168.1.0 0.0.0.255

no cdp run

The IP NAT has already open port 5050 to the web server however it is still not working.

Hi,

  Is there any Firewall in between the router and your local lan?  Please post the output of "show ip nat translation" while connecting that web server with TCP/5050 from the internet. Windows Server Right? Please post the output of  "netstat -an"  on webserver while connecting that web server with TCP/5050 from the internet.

Toshi