[c-nsp] NAT problem

Luan Nguyen luan.nguyen at mci.com
Tue Feb 22 09:01:00 EST 2005


I would do policy base routing on your tunnel1 interface - match traffic
with destination port 22 and forward to that internal server.  The rest of
the traffic just forward normally.

Luan
----- Original Message ----- 
From: "Martin Kluge" <martin at elxsi.de>
To: <cisco-nsp at puck.nether.net>
Sent: Tuesday, February 22, 2005 8:31 AM
Subject: [c-nsp] NAT problem


> Hi list,
>
> I have a small problem with NAT. I have a cisco router which is connected
to the
> internet. I've setted up a mGRE tunnel with nhrp.
>
> Now I want to do the following:
>
> I want to forward all connections to port 22 to an internal server:
>
> ip nat inside source list 1 interface Dialer1 overload
> ip nat inside source static tcp 192.168.1.1 22 interface Dialer1 22
>
> This works fine. The problem is, that if I try to add the same
> (ip nat inside source static tcp 192.168.1.1 22 interface Tunnel 1 22)
> for the tunnel interface, it overwrites the above entry for the
> Dialer interface.
>
> So how is it possible to forward ALL connections (internet AND tunnel) to
port
> 22 to port 22 of an internal server?
>
> Thank you for your help,
> Martin
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list