Re: CISCO 1841 e twice NAT con port forwarding
Inviato: gio 09 nov , 2017 10:50 am
E' quello che fa. Infatti se io mando la richiesta da PC-EXT mi torna indietro su R1 e non su ISP.
Paolo
Paolo
Codice: Seleziona tutto
PC_INT#traceroute 8.8.8.8
Type escape sequence to abort.
Tracing the route to 8.8.8.8
VRF info: (vrf in name/id, vrf out name/id)
1 192.168.1.254 92 msec 44 msec 8 msec
2 192.168.1.254 !H !H !H
Codice: Seleziona tutto
PC_EXT#telnet 1.1.1.254
Trying 1.1.1.254 ... Open
User Access Verification
Username: paolo
Password:
PC_INT>
Codice: Seleziona tutto
! Last configuration change at 12:40:16 UTC Wed Nov 1 2017
upgrade fpd auto
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
no ip icmp rate-limit unreachable
!
!
!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
redundancy
!
!
ip tcp synwait-time 5
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 192.168.1.100 255.255.255.0
ip nat enable
duplex half
!
interface GigabitEthernet1/0
ip address 1.1.1.254 255.255.255.0
ip nat enable
negotiation auto
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip nat source list nat-outside interface FastEthernet0/0 overload
ip nat source static tcp 192.168.1.1 23 1.1.1.254 23 extendable
!
ip access-list extended nat-outside
permit ip any any
!
no cdp log mismatch duplex
!
!
!
control-plane
!
!
!
mgcp profile default
!
!
!
gatekeeper
shutdown
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
stopbits 1
line vty 0 4
login
transport input all
!
!
end