Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
641
Views
0
Helpful
1
Replies

IOS PAT + VPN configuration

acomiskey
Level 10
Level 10

‎09-14-2011 09:15 AM - edited ‎03-04-2019 01:36 PM

A server (10.0.0.5) is accessible from the outside on ports 443 and 3389.

ip nat inside source static tcp 10.0.0.5 443 interface FastEthernet0/0 443

ip nat inside source static tcp 10.0.0.5 3389 interface FastEthernet0/0 3389

I also need to access 10.0.0.5 while connected to a remote access vpn. Here is my configuration for nat and nat exemption. (192.168.50.0/24 is the vpn subnet)

ip nat inside source route-map nonat interface FastEthernet0/0 overload

access-list 111 deny   ip 10.0.0.0 0.0.0.255 192.168.50.0 0.0.0.255

access-list 111 permit ip 10.0.0.0 0.0.0.255 any

access-list 111 permit ip 192.168.1.0 0.0.0.255 any

route-map nonat permit 10

match ip address 111


I can access 10.0.0.5 on 443 and 3389 from the outside as planned using the address of fa0/0, but I cannot access 10.0.0.5 while vpn'd. I'm sure it has something to do with the nat configuration but can't find a solution.

Labels:
0 Helpful
1 Reply 1

acomiskey
Level 10
Level 10

‎09-15-2011 06:34 AM

Bump....

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card