01-05-2011 03:35 AM - edited 03-04-2019 10:57 AM
Hi Guys,
I just spent over an hour trying to figure out why my static nat isn't working. I have changed few things and my current config looks like that:
ip nat inside source route-map SDM_RMAP_1 interface Dialer0 overload
ip nat inside source static tcp 10.1.1.101 25 x.x.x.x 25 extendable
!
access-list 100 remark SDM_ACL Category=18
access-list 100 permit ip 10.1.1.0 0.0.0.63 any ( here I attempted to change the ACL to move the server from dynamic nat to see if it would work)
dialer-list 1 protocol ip permit
route-map SDM_RMAP_1 permit 1
match ip address 100
857W#sh ip nat translations
Pro Inside global Inside local Outside local Outside global
tcp x.x.x.x:50219 10.1.1.2:50219 216.52.233.244:443 216.52.233.244:443
tcp x.x.x.x:25 10.1.1.101:25 --- ---
Please note that x.x.x.x is my public static IP address given to me by my ISP
10.1.1.101 is my exchange server
857W#sh ip nat statistics
Total active translations: 5 (1 static, 4 dynamic; 5 extended)
Outside interfaces:
Dialer0, Virtual-Access1
Inside interfaces:
BVI1, Dot11Radio0, Vlan1
Hits: 12110 Misses: 0
CEF Translated packets: 11600, CEF Punted packets: 1009
Expired translations: 428
Dynamic mappings:
-- Inside Source
[Id: 1] route-map SDM_RMAP_1 interface Dialer0 refcount 4
Appl doors: 0
Normal doors: 0
Queued Packets: 0
Please Help!!
Solved! Go to Solution.
01-05-2011 03:41 AM
Hi,
Assuming that your public IP address is 220.244.106.75, I actually have been able to telnet into your SMTP port:
peterp@bach:~$ telnet 220.244.106.75 25
Trying 220.244.106.75...
Connected to 220.244.106.75.
Escape character is '^]'.
220 Server01.Francisco.local Microsoft ESMTP MAIL Service ready at Wed, 5 Jan 2011 03:40:31 -0800
EHLO paluch.local
250-Server01.Francisco.local Hello [87.197.3.73]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250 XRDST
RSET
250 2.0.0 Resetting
QUIT
221 2.0.0 Service closing transmission channel
Connection closed by foreign host.
peterp@bach:~$
So it seems it works from the outside.
Best regards,
Peter
01-05-2011 03:41 AM
Hi,
Assuming that your public IP address is 220.244.106.75, I actually have been able to telnet into your SMTP port:
peterp@bach:~$ telnet 220.244.106.75 25
Trying 220.244.106.75...
Connected to 220.244.106.75.
Escape character is '^]'.
220 Server01.Francisco.local Microsoft ESMTP MAIL Service ready at Wed, 5 Jan 2011 03:40:31 -0800
EHLO paluch.local
250-Server01.Francisco.local Hello [87.197.3.73]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250 XRDST
RSET
250 2.0.0 Resetting
QUIT
221 2.0.0 Service closing transmission channel
Connection closed by foreign host.
peterp@bach:~$
So it seems it works from the outside.
Best regards,
Peter
01-05-2011 03:57 AM
Far out I forgot to move my IP from the static NAT.....
Thanks heaps!!!!!
cheers,
Fabio
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide