Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all,I can't get a combination of static and dynamic PAT to work for the following case:Router is connected to a /29 range of external IP adresses: 1.1.1.33, subnet 255.255.255.248I'd like to have machines connecting (regular dynamic NAT) from 192....
Hi all,I had a NAT setup with hairpinning that I liked, but can't replicate it on my new router that doesn't have NVI any more. I tried now to do the most basic, simple setup -- starting from scratch with a new router and one new device. Still, with ...
Hi all,
Despite multiple discussions on NAT / Hairpinning / NVI I don't seem to really get it. What I want to do is the following:
* I've got a server at 192.168.1.240:80 and :443 running which I'd like to NAT to a
static outside IP (XXX.XXX.XXX.X...
Further update -- I was made aware that a mapping of two global IPs to one single (same) IP and port might not work. Removed the double allocation, cleaned up also the 252 / 248 and pointless route mentionned above. -> still, no connection possible. ...
Further update -- thanks to a hint, I corrected the NATPOOL from 252 to 248 in line with Gig0/0/0. Still unable to establish the static NAT connection from 1.1.1.35:2207 -> 192.168.1.107:22. The nat still is in the show ip translation as if it'd work...
Dear @Flavio Miranda , The ip dhcp excluded-address is just for reserving some IPs out of the pool as the range from 192.168.1.0 to 192.168.1.10 are statically allocated IPs and not dynamically alloacted ones. Could you elaborate on the problem with ...
Hi @David Ruess ,Thanks for the reply! Below the results. Would be great if you could help further. show ip nat translationsPro Inside global Inside local Outside local Outside globaltcp 1.1.1.35:2207 192.168.1.107:...
A further problem -- now I can't seem to reach internet via Giga 4 any more from e.g. 192.168.1.100. Can I just delete the "access-list 1 deny host 192.168.1.100"? Or do I cause trouble to the NVI nat like so?
