Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4789
Views
0
Helpful
2
Replies

NAT Port Forwarding RDP Issue

Go to solution
matthewjwilson
Level 1
Level 1

‎01-06-2011 06:20 AM - edited ‎03-04-2019 10:58 AM

I have a 3825 set up that uses port address translation to forward incoming port 22 on my "external" IP address 10.10.1.110 to port 22 on the "internal" IP address 10.1.0.1. I am in fact able to SSH to 10.10.1.110 and get connected to the appropriate device.

When I run the "show ip nat translation" command, the following correct output is shown:

Router#show ip nat tr
Pro Inside global      Inside local       Outside local      Outside global
tcp 10.10.1.110:22     10.1.0.1:22        10.7.0.6:13724     10.7.0.6:13724
tcp 10.10.1.110:22     10.1.0.1:22        10.7.0.6:13772     10.7.0.6:13772

I am trying to do the same thing with RDP so that I can access a Windows machine. There is no firewall on the network or running on the Windows machine, so I know that RDP is not blocked anywhere. I can RDP to the machine from within the same network, and when I try to RDP to the "external" 10.10.1.110 address, the following shows up in the NAT translation table:

Router#show ip nat tr
Pro Inside global      Inside local       Outside local      Outside global
tcp 10.10.1.110:22     10.1.0.1:22        10.7.0.6:13724     10.7.0.6:13724
tcp 10.10.1.110:22     10.1.0.1:22        10.7.0.6:13772     10.7.0.6:13772

tcp 10.10.1.110:3389   192.168.99.2:3389  10.7.0.6:13861     10.7.0.6:13861

The translation shows up in the NAT translation table, but the RDP session never connects. Here are the NAT configuration commands I am using (I omitted the "ip nat inside/outside" commands):


ip nat inside source static tcp 10.1.0.1 22 10.10.1.110 22 extendable
ip nat inside source static tcp 192.168.99.2 3389 10.10.1.110 3389 extendable

Does anyone have any idea why SSH works with its NAT translation but RDP does not?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
lgijssel
Level 9
Level 9

‎01-06-2011 09:43 AM

Your nat entries look ok so there is no problem inbound,

However, the RDP session connects to a different machine.

It is likely that this machine does not have a route back to the outside.

Please check the routing between network 192.168.99.0 and 10.7.0.0

regards,

Leo

View solution in original post

0 Helpful
2 Replies 2

Go to solution
lgijssel
Level 9
Level 9

‎01-06-2011 09:43 AM

Your nat entries look ok so there is no problem inbound,

However, the RDP session connects to a different machine.

It is likely that this machine does not have a route back to the outside.

Please check the routing between network 192.168.99.0 and 10.7.0.0

regards,

Leo

0 Helpful

Go to solution
matthewjwilson
Level 1
Level 1
In response to lgijssel

‎01-06-2011 10:24 AM

Leo, thank you so much! It's always something simple that you just overlook... What had happened was that I forgot the "default-originate" command under my BGP configuration, so no other router had a default route!

Thanks again.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card