01-20-2022 02:17 AM
Hello,
We need configure end user internal server tcp443 port translate to cEdge interface tcp 4433 (there is only one public ip address), how to do it ?
The same commands of IOS:
ip nat outside ip nat inside ip nat inside source static tcp 172.16.x.x 443 100.1.1.1 4433 extendable
Solved! Go to Solution.
01-20-2022 06:07 PM
I think you misunderstood what I meant. I want to map the internal server's port mirroring to another TCP port on the router's public network interface on the router. Instead of modifying the ports for the default protocol on the router, and this is an Edge device in SDWAN, not a traditional IOS router configuration.
I confirmed with Cisco that cEdge will not support this function for the time being, and it needs to be supported in a later version. Currently vEdge should support this feature.
Anyway, thanks for your help, thanks.
01-20-2022 07:49 AM
Hi
What you need is called PAT (Port address translation) where you keep one IP address and differentiate services buy TCP ports.
The question I have is, where are you going to apply this PAT? It will be on the Router itself?
01-20-2022 03:37 PM
Yes,its PAT.
In addition to doing it on the edge, can it be done on other devices? (Only one edge has no other devices, the switch connected downstream the edge)
Do you know how to configure?
01-20-2022 05:04 PM
Well, PAT or NAT requires one interface to be inside and one interface to be outside. I mean, the device that perform NAT/PAT is meant to be before the target device. If I understude you well, you want to perform NAT but you have only the router itself. I dont think it is possible.
What you can do is change HTTPS port from 443 to 4443 internaly.
conf t
ip http sercure-port 4443
01-20-2022 06:07 PM
I think you misunderstood what I meant. I want to map the internal server's port mirroring to another TCP port on the router's public network interface on the router. Instead of modifying the ports for the default protocol on the router, and this is an Edge device in SDWAN, not a traditional IOS router configuration.
I confirmed with Cisco that cEdge will not support this function for the time being, and it needs to be supported in a later version. Currently vEdge should support this feature.
Anyway, thanks for your help, thanks.
01-20-2022 06:48 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide