Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
211
Views
0
Helpful
1
Replies

Fully functioning NAT on IOS, port forwarding

jacksonp2008
Level 1
Level 1

‎01-08-2016 05:44 PM - edited ‎03-05-2019 06:59 AM

This one has been bugging me (npi) as I believe I have it configured properly and it's a terribly simple use case.

Outside (10.2.234.x) --Router--(10.12.1.x) Inside

Outbound NAT works great with:  

ip nat inside source list 1 interface GigabitEthernet0 overload

however, I also want to port forward inbound.  I have a secondary address on the outbound interface:

interface GigabitEthernet0

ip address 10.2.234.3 255.255.254.0 secondary

ip address 10.2.234.2 255.255.254.0

ip nat outside

ip nat enable

This seems to create the translations:

ip nat pool PRTFWD 10.12.1.62 10.12.1.62 netmask 255.255.255.0 type rotary

ip nat inside destination list 100 pool PRTFWD

Here is an example using port 80:

show ip nat tr

Pro Inside global         Inside local          Outside local         Outside global

tcp 10.2.234.3:80         10.12.1.62:80         10.10.120.119:64589   10.10.120.119:64589

tcp 10.2.234.3:80         10.12.1.62:80         10.10.120.119:64594   10.10.120.119:64594

So translations appear correct, but the host on browser 10.10.120.119 never gets a page back on port 80.

I must be missing something...  ideas?

Labels:
Preview file
5 KB
0 Helpful
1 Reply 1

Masoud Pourshabanian
VIP Alumni
VIP Alumni

‎01-08-2016 06:20 PM

Duplicate Post

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card