cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1175
Views
0
Helpful
2
Replies

NAT Clarification

andrea.lotronto
Level 1
Level 1

Hi at all

I have a router (R0) cisco connect with one interface e0 to network 192.168.2.0/25 (inside) and one interface e1 to network 200.10.20.0/24 (outside).

On the inside network there are many host that receive the ip and def-router from dhcp server on R0.

The host of network 192.168.2.0/24 comunicate with host in network 201.10.21.0/24 trought the ip of e1 interface on router R0 whit nat, this work fine and test with ping.

The of the nat in router R0 is the following:

Interface fastethernet 0

ip address 192.168.2.1 255.255.255.0

ip nat inside

Interface fastethernet 1

ip address 201.10.21.1 255.255.255.0

ip nat outside

ip nat pool over 201.10.21.1 201.10.21.1 prefix-length 24

ip nat inside source list 101 pool over overload

access-list 101 permit icmp 192.168.2.0 0.0.0.255 201.10.21.0 0.0.0.255

access-list 101 permit ip 192.168.2.0 0.0.0.255 201.10.21.0 0.0.0.255

Now i need to configure R0 so as redirect all traffic of the hosts in inside network to internet to proxy server 201.10.21.200 on port 8080.

I have fount difficult to accomplished this task using nat.

What is the best solution for this task??

Tanks for any response

2 Replies 2

Neeraj Arora
Level 3
Level 3

Andrea,

personally I don't think you'd be able to accomplish what you are looking for using NAT. As you want to change the destination port to 8080, it would be little tricky to make it work.

You'd have to look at other options such as WCCP which by definition should work well for Web traffic or simply putting a default route on the router pointing towards 201.10.21.200..this would not solve the port 8080 requirement instead it will send all the traffic traversing the router from inside to outside to your proxy

According to me, a better way for this would be to put the Proxy server inside your network and use it as the default gateway for the users. On the proxy you can configure the router to act as the default gateway. This would enable all the users to first send the traffic towards proxy server and then it will relay it to the router to be sent out to internet.

There might be other ways for this, hopefully we'll hear from other experts as well witrh their comments

Neeraj

Thanks for replay Neeraj

To accomplished task to change ip/port destination can I use any method (not necessarily NAT).

I can set on router R0 default-gateway whit the proxy ip but this only listens 8080 port.

I hope there is a possible solution for this task only using IOS router command.

Tanks for any responses

Review Cisco Networking for a $25 gift card