Hi Kai

your config doing fine however another problem occurs

inside of the network i can access via remote

but

outside office, home, internet cafe/shop, my friends house, i can't access my router.. why?

by the way

here's ISP ip range gave:

wan ip: 125.212.12.252

isp side: 125.212.12.253

client side: 125.212.12.254

sub mask: 255.255.255.252

public ip: 121.97.65.61 - .74 / 28

on my router:

all offices access with the ip route overload: 125.212.12.253

all server acess with the ip route overload statement above: ip nat inside source-list SERVERS interface gigabitethernet 0/1 overload

with the ip route with this:

ip route 0.0.0.0 0.0.0.0 125.212.12.253

ip nat inside source-list SERVERS interface gigabitethernet 0/1 overload

ip nat inside source-list OFFICES interface gigabitethernet 0/0 overload

_________

router:

interface gigabitethernet 0/0

ip address 125.212.12.254 255.255.255.252

no ip redirects

no ip proxy-arp

ip virtual reassembly

no cdp enable

duplex full

speed auto

Hello,

the configuration I posted, does anythig you requested. If you want to access the router via the WAN interface, I've to know serveral things and I also have to ask some questions.

1. Is the IP Address, which you receive a static one or dynamic?

         If yes, you'll have an quiet simple way.

         If no, you have to configure something like DynDNS, so that you can reach the WAN Interface from everywhere

2. Does your places outside the office, e.g home, internet cafe/shop, my friends house, have static IP Addresses?

         If yes, you can add them to the access list

         If no, you have a problem, because then you have allways to replace the 'old' IP Address with the 'new' on

         A possible soluttion could be the setup of a VPN Server at you router. But than you would have another problem:

                1. You need a static IP Address or e.g. a DynDNS entry

                2. Than you have only to add the VPN network to your access list.

                3. You would be able to install a VPN Client at you home computer, your friends computer but I think you would't be allowed to install a VPN Client on an Internet shops computer.

Kind regards

Kai

1. Is the IP Address, which you receive a static one or dynamic?

-> yes, static written above ISP gave that

2. Does your places outside the office, e.g home, internet cafe/shop, my friends house, have static IP Addresses?

-> yes, static . 124.45.65.201/24

A possible soluttion could be the setup of a VPN Server at you router. But than you would have another problem:

1. i have static if you want a vpn setup on a router, but for me know how?

2. how to add, i even dont know how to create one.

3. installing vpn client is not a problem, i have on my own gear and i bring this where i am

and if you give me 1 shot on creating vpn server on my router 2911, and some other config ,

Hi Kai,

very helpful link from you

Thanks