[nsp] nat on a stick
Roger
grunky at rockriver.net
Tue Feb 24 18:16:56 EST 2004
I'm attempting to configure "nat on a stick" w/ no luck. I need my
internal nat clients on e0 192.168.0.0/24 to be able to access a web
site w/ an external ip of, 1.2.3.4/30...
I've looked over some advice of others and have come up with the below.
This *should* allow people connecting on e0 to view the web page on the
internal host 192.168.0.3/24. Instead I get zip.....
ip nat pool ISP 192.168.100.2 192.168.100.254 prefix-length 24
ip nat pool INTERNAL 192.168.200.1 192.168.200.254 prefix-length 24
ip nat inside source list 101 pool ISP
ip nat outside source list 102 pool INTERNAL
ip nat inside source static 192.168.0.3 192.168.100.1
!
Interface E0
ip address 192.168.0.100 255.255.255.0
ip nat inside
!
Interface e1
ip address 1.2.3.4 255.255.255.252
ip nat outside
!
Loopback0
ip address 10.0.0.1 255.255.255.0
ip nat outside
!
access-list 101 deny ip 192.168.0.0 0.0.0.255 host 192.168.100.1
access-list 101 permit ip 192.168.0.0 0.0.0.255 any
access-list 102 permit ip 192.168.0.0 0.0.0.255 host 192.168.100.1
!
ip route 192.168.100.1 255.255.255.255 loopback0
ip route 192.168.200.0 255.255.255.0 loopback0
More information about the cisco-nsp
mailing list