Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
609
Views
0
Helpful
2
Replies

Static NAT Problem

Go to solution
Fabio Francisco
Level 1
Level 1

‎01-05-2011 03:35 AM - edited ‎03-04-2019 10:57 AM

Hi Guys,


I just spent over an hour trying to figure out why my  static nat isn't working. I have changed few things and my current  config looks like that:

ip nat inside source route-map SDM_RMAP_1 interface Dialer0 overload
ip nat inside source static tcp 10.1.1.101 25 x.x.x.x 25 extendable
!
access-list 100 remark SDM_ACL Category=18
access-list 100 permit ip 10.1.1.0 0.0.0.63 any    ( here I attempted to change the ACL to move the server from dynamic nat to see if it would work)
dialer-list 1 protocol ip permit
route-map SDM_RMAP_1 permit 1
  match ip address 100

857W#sh ip nat translations
Pro Inside global      Inside local       Outside local      Outside global
tcp x.x.x.x:50219 10.1.1.2:50219   216.52.233.244:443 216.52.233.244:443
tcp x.x.x.x:25  10.1.1.101:25      ---                ---

Please note that x.x.x.x is my public static IP address given to me by my ISP

10.1.1.101 is my exchange server

857W#sh ip nat statistics
Total active translations: 5 (1 static, 4 dynamic; 5 extended)
Outside interfaces:
   Dialer0, Virtual-Access1
Inside interfaces:
   BVI1, Dot11Radio0, Vlan1
Hits: 12110  Misses: 0
CEF Translated packets: 11600, CEF Punted packets: 1009
Expired translations: 428
Dynamic mappings:
-- Inside Source
[Id: 1] route-map SDM_RMAP_1 interface Dialer0 refcount 4
Appl doors: 0
Normal doors: 0
Queued Packets: 0


Please Help!!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎01-05-2011 03:41 AM

Hi,

Assuming that your public IP address is 220.244.106.75, I actually have been able to telnet into your SMTP port:

peterp@bach:~$ telnet 220.244.106.75 25
Trying 220.244.106.75...
Connected to 220.244.106.75.
Escape character is '^]'.
220 Server01.Francisco.local Microsoft ESMTP MAIL Service ready at Wed, 5 Jan 2011 03:40:31 -0800
EHLO paluch.local
250-Server01.Francisco.local Hello [87.197.3.73]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250 XRDST
RSET
250 2.0.0 Resetting
QUIT
221 2.0.0 Service closing transmission channel
Connection closed by foreign host.
peterp@bach:~$

So it seems it works from the outside.

Best regards,

Peter

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎01-05-2011 03:41 AM

Hi,

Assuming that your public IP address is 220.244.106.75, I actually have been able to telnet into your SMTP port:

peterp@bach:~$ telnet 220.244.106.75 25
Trying 220.244.106.75...
Connected to 220.244.106.75.
Escape character is '^]'.
220 Server01.Francisco.local Microsoft ESMTP MAIL Service ready at Wed, 5 Jan 2011 03:40:31 -0800
EHLO paluch.local
250-Server01.Francisco.local Hello [87.197.3.73]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250 XRDST
RSET
250 2.0.0 Resetting
QUIT
221 2.0.0 Service closing transmission channel
Connection closed by foreign host.
peterp@bach:~$

So it seems it works from the outside.

Best regards,

Peter

0 Helpful

Go to solution
Fabio Francisco
Level 1
Level 1
In response to Peter Paluch

‎01-05-2011 03:57 AM

Far out I forgot to move my IP from the static NAT.....

Thanks heaps!!!!!

cheers,

Fabio

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card