147
Source IP/port: 192.168.1.10/8080
Destination IP/port: 202.38.1.3/1025
DS-Lite tunnel peer: -
VPN instance/VLAN ID/VLL ID: -/-/-
Protocol: TCP(6)
Inbound interface: GigabitEthernet2/0/2
State: TCP_ESTABLISHED
Application: HTTP
Start time: 2012-08-15 14:53:29 TTL: 3597s
Initiator->Responder: 7 packets 308 bytes
Responder->Initiator: 5 packets 312 bytes
Total sessions found: 1
NAT Server for external-to-internal access configuration
example
Network requirements
As shown in Figure 66, two Web servers, one FTP server and one SMTP server are in the internal
network to provide services for external users. The internal network address is 10.110.0.0/16. The
company has three public IP addresses from 202.38.1.1/24 to 202.38.1.3/24.
Configure the NAT Server feature to allow the external user to access the internal servers with public
address 202.38.1.1/24.
Figure 66 Network diagram
Configuration procedure
# Specify IP addresses for the interfaces on the router. (Details not shown.)
# Enter interface view of GigabitEthernet 2/0/2.
<Router> system-view
[Router] interface gigabitethernet 2/0/2
# Configure NAT Server to allow external users to access the FTP server by using the address
202.38.1.1 and port 21.
[Router-GigabitEthernet2/0/2] nat server protocol tcp global 202.38.1.1 21 inside
10.110.10.3 ftp
# Configure NAT Server to allow external users to access the Web server 1 by using the address
202.38.1.1 and port 80.
To Next Page
Loading...
Need help?
General
