Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6031
Views
0
Helpful
15
Replies

Port forwarding & nat

boonwah.yeo
Level 1
Level 1

‎11-10-2012 10:02 AM - edited ‎03-04-2019 06:05 PM

Hello guys, need some help, i am very green in Networking.

Please help me in this commands.

Currently we have 2 office, in India n Singapore, without any wan connection between this 2 office. This India office has installed some wireles cam (192.168.1.15), I want to monitor this wireless cam in Singapore office, and also at the same time open up 18 ports (9101 - 9119) for the 18 cams, (192.168.1.15:9101 - 9119).

from my understanding, i believe i will need to get 1 WAN IP address to translate to their 192.168.1.15:9101 - 9119? So that from Singapore office, I can access to their cam through the India WAN ip?

Please advice the command.

Below is the config

boot-start-marker

boot-end-marker

!

!

enable secret 4 06YFDUHH61wAE/kLkDq9BGho1QM5EnRtoyr8cHAUg.2

!

aaa new-model

!

!

!

!

!

!

!

aaa session-id common

!

no ipv6 cef

ip source-route

ip cef

!

!

!

ip dhcp excluded-address 192.168.1.161 192.168.1.172

!

ip dhcp pool LAN

 import all

 network 192.168.1.0 255.255.255.0

 default-router 192.168.1.254

 dns-server 212.76.85.145 213.236.32.2

 lease 0 2

!

!

ip name-server 212.76.85.145

ip name-server 213.236.32.2

multilink bundle-name authenticated

!

crypto pki token default removal timeout 0

!

!

license udi pid CISCO1941/K9 sn FCZ162091HZ

!

!

username wael secret 4 n0V/y9uy56hzE90yiFc4hFTclRUtqGgKuR3D.Rw5PME

!

!

!

!

!

!

interface Embedded-Service-Engine0/0

 no ip address

 shutdown

!

interface GigabitEthernet0/0

 description Connected To POE - WAN

 ip address 172.21.5.90 255.255.255.248

 ip nat outside

 ip virtual-reassembly in

 duplex auto

 speed auto

!

interface GigabitEthernet0/1

 description LAN

 ip address 192.168.1.254 255.255.255.0 secondary

 ip address 213.236.56.233 255.255.255.248

 ip nat inside

 ip virtual-reassembly in

 duplex auto

 speed auto

!

ip forward-protocol nd

!

no ip http server

no ip http secure-server

!

ip nat inside source list 101 interface GigabitEthernet0/1 overload

ip route 0.0.0.0 0.0.0.0 172.21.5.89

!

access-list 101 permit ip 192.168.1.0 0.0.0.255 any

!

!

!

!

!

control-plane

!

!

!

line con 0

line aux 0

line 2

 no activation-character

 no exec

 transport preferred none

 transport input all

 transport output pad telnet rlogin lapb-ta mop udptn v120 ssh

 stopbits 1

line vty 0 4

 transport input all

!

scheduler allocate 20000 1000

end

Please advise the command to do this.

Best Regards

Labels:
0 Helpful
15 Replies 15

Emmanuel Valdez
Level 3
Level 3

‎11-12-2012 09:11 AM

Hi Yeo,

If you don´t want to use RDP you have to access camera by camera via NAT translation so you could have an access list that point to each ip address of the camera and its port, in this case you are nating the pc/server and not the cameras.

The most simple case it to NAT the server and display the cameras screen through the administration interface on the server, the RDP is only one example, there are more application to access a server like VNC, if your boss don´t want to use them because is very insecure you can change the default port of the application.

Regards.

0 Helpful
Customers Also Viewed These Support Documents