Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
626
Views
0
Helpful
1
Replies

Port forwarding

Krasnoperov
Level 1
Level 1

‎08-31-2011 11:39 PM - edited ‎03-07-2019 01:59 AM

Hi, I have some questions about port forwarding on Cisco router and *nix ip tables dnat

Am I right in my guess?

When I have a Router with LAN interface 10.1.1.1/32 ip address and WAN Dialer interface with 5.5.5.5/32 ip address and I make port fowarding from WAN to LAN like this:

ip nat inside source static tcp 10.1.1.2 80 5.5.5.5 8080

that means packet which come to my WAN interface will be open by my Router, and it will change destination field from 5.5.5.5:8080 to 10.1.1.2:80, and then forward to LAN 10.1.1.2:80

same operation for *nix router when doing DNAT

IPTABLES -t nat -A PREROUTING -p TCP -d 5.5.5.5 --dport 8080 -j DNAT --to-destination 10.1.1.2:80

means packet which come to my WAN interface will be open by my *nix router,  and it will change destination field from 5.5.5.5:8080 to 10.1.1.2:80,  and then forward to LAN 10.1.1.2:80

Am I right that is same operations *nix call it DNAT cisco call it port forwarding? or cisco use other mechanism when port forwarding occurs, and it does not change packet header int destination field?

thanks

Labels:
0 Helpful
1 Reply 1

Alexander Maroukian
Level 3
Level 3

‎09-01-2011 12:01 AM

Hi,

Yes this is the way you can do this translation. You must define (ip nat inside on lan interface, ip nat outside on wan interface) your inside and outside interface too and have the port open on your wan interface ofcourse.

In ASA/PIX is a bit different.

Regards,

Alex

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card