I've read a lot of discussions about Hairpin NAT for Cisco IOS router. Mostly about creating an NVI, PBR or split DNS.
On my Mikrotik home router I was facing this issue as well but it was easy to enable a Hairpin NAT solution, see
Basicly you create a SNAT entry next to de DNAT entry. I saw some discussion online (other forum) that somebody managed to do this on a Cisco router as well, but no examples were shown.
Is this possible on a Cisco IOS router? It seems way more simple than the other suggestions to create a Hairpin NAT rule.
Domain-less nat (NVI) should be able to accommodate this, As the nat order differs from domain based nat in that NVI nat performs two route lookups before and after nat translation, thus internal hosts should be able to reach their own internal web server via its local destination natted address.
ip address 220.127.116.11 255.255.255.0
ip nat enable
ip address 192.168.1.1 255.255.255.0
ip nat enable
access-list 1 deny host 192.168.1.10
access-list permit 192.168.1.0 0.0.0.255
ip nat source static tcp 192.168.1.10 443 18.104.22.168 443
ip nat source list 1 interface (wan)
Thanks for your reply. Ok, so it's not possible like the way I provided in post? I read that NVI puts strain on the cpu, it's a 887 series router. Is NVI still the recommended method in this case?
have a look at this previous post