05-24-2012 01:57 AM - edited 03-04-2019 04:27 PM
Help, we need to port forward a range of ports on a Cisco 1841 Router, Rom Version 12.3, Firmware flash:c1841-advsecurityk9-mz.124-2.T.bin
We need to port forward a range of ports from a WAN to internal IP.
(There are deliberate typos in the IP information)
Cisco10 External IP: 40.34.159.3 Internal IP: 192.168.1.3 Port Range: 4000-4200 and 14000-14200
Cisco8 External IP: 40.34.159.4 Internal IP: 192.168.1.4 Port Range: 5000-5200 and 15000-15200
Newt1 External IP: 40.34.159.9 Internal IP: 192.168.1.9 Port Range: 6000-6200
We need simple commands, as I'm not very good with this. Please help me, my boss is not happy.
05-24-2012 07:52 AM
Guys, I'm just looking for simple commands to forward a range of ports.
I know fowarding a range of ports is a topic that has recieved some interest recently, but I don't know enough to "translate" the documents I found into actual commands.
Please help.
11-16-2012 06:11 AM
To solve this port forward issue I would first setup an access list for the port ranges I want.
access-list 100 permit udp any any range 4000 4200
access-list 100 permit tcp any any range 4000 4200
access-list 100 permit tcp any any 14000 14200
access-list 100 permit udp any any 14000 14200
Next I would make a nat pool for the IP address I want to forward the ports too like this:
ip nat pool PORTFORWARD 192.168.1.3 192.168.1.3 netmask 255.255.255.0 type rotary
Finally I would apply the access list:
ip nat inside destination list 100 pool PORTFORWARD
I don't know if there is an easier way of doing this but this method seems to work well.
11-16-2012 06:29 AM
Hi,
I've never done this before. But try this configuration
ip access-list extended PORTFWR_1
permit tcp host any any eq range 4000 4200
permit tcp host any any eq range 14000 14200
ip access-list extended PORTFWR_2
permit tcp host any any eq range 5000 5200
permit tcp host any any eq range 15000 15200
ip access-list extended PORTFWR_3
permit tcp host any any eq range 6000 6200
route-map PORTFORWARD_1
match ip address PORTFWR_1
route-map PORTFORWARD_2
match ip address PORTFWR_2
route-map PORTFORWARD_3
match ip address PORTFWR_3
ip nat inside source static 192.168.1.3 40.34.159.3 route-map PORTFORWARD_1
ip nat inside source static 192.168.1.4 40.34.159.4 route-map PORTFORWARD_1
ip nat inside source static 192.168.1.9 40.34.159.9 route-map PORTFORWARD_1
Let me know of results.
Hope it will help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide