Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > port forwarding not working - here is my config!

Reply
Thread Tools

port forwarding not working - here is my config!

 
 
Steve Richter
Guest
Posts: n/a
 
      05-20-2005
ok friends, here is my cisco 831 config. ( thanks to the tftp freebie
from the good folks at kiwi enterprises:
http://www.kiwisyslog.com/index.htm )

What I want to do is forward the http traffic to my w2k web server on
10.10.10.161.

I am using verizon dsl service, dont have a static IP address.
Currently my ip address is 141.153.133.251.

the last I checked, this is not working:
http://141.153.133.251/demosite/page2.aspx

any help is appreciated,

-Steve

----------------------------------------------------------

!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname Router
!
no logging buffered
enable secret 5 xxxxxxxxxxxxx
!
username ...
username ...
ip subnet-zero
ip name-server 151.198.0.39
ip name-server 151.197.0.39
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.10.10.160 10.10.10.254
ip dhcp excluded-address 10.10.10.161
!
ip dhcp pool CLIENT
import all
network 10.10.10.0 255.255.255.0
default-router 10.10.10.1
lease 0 2
!
ip audit notify log
ip audit po max-events 100
!
!
!
!
interface Ethernet0
ip address 10.10.10.1 255.255.255.0
ip nat inside
ip tcp adjust-mss 1452
no cdp enable
hold-queue 32 in
hold-queue 100 out
!
interface Ethernet1
no ip address
pppoe enable
pppoe-client dial-pool-number 1
no cdp enable
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname ...
ppp chap password ...
ppp pap sent-username ...
ppp ipcp dns request
ppp ipcp wins request
!
ip nat inside source list 102 interface Dialer1 overload
ip nat inside source static tcp 10.10.10.161 21 interface Dialer1 21
ip nat inside source static tcp 10.10.10.161 80 interface Dialer1 80
ip nat inside source static tcp 10.10.10.160 3008 interface Dialer1
3008
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
!
!
access-list 23 permit 10.10.10.0 0.0.0.255
access-list 102 permit ip 10.10.10.0 0.0.0.255 any
dialer-list 1 protocol ip permit
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
stopbits 1
line vty 0 4
access-class 23 in
exec-timeout 120 0
login local
length 0
!
scheduler max-task-time 5000
end

 
Reply With Quote
 
 
 
 
Fred Atkinson
Guest
Posts: n/a
 
      05-20-2005
Try this,

ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1 80

It works for me in my 831.

I did change the IP address to yours, though. Other than that
it is exactly the line in my 831.

Fred

On 20 May 2005 11:47:47 -0700, "Steve Richter"
<(E-Mail Removed)> wrote:

>ok friends, here is my cisco 831 config. ( thanks to the tftp freebie
>from the good folks at kiwi enterprises:
>http://www.kiwisyslog.com/index.htm )
>
>What I want to do is forward the http traffic to my w2k web server on
>10.10.10.161.
>
>I am using verizon dsl service, dont have a static IP address.
>Currently my ip address is 141.153.133.251.
>
>the last I checked, this is not working:
> http://141.153.133.251/demosite/page2.aspx
>
>any help is appreciated,
>
>-Steve
>
>----------------------------------------------------------
>
>!
>version 12.2
>no service pad
>service timestamps debug uptime
>service timestamps log uptime
>service password-encryption
>!
>hostname Router
>!
>no logging buffered
>enable secret 5 xxxxxxxxxxxxx
>!
>username ...
>username ...
>ip subnet-zero
>ip name-server 151.198.0.39
>ip name-server 151.197.0.39
>ip dhcp excluded-address 10.10.10.1
>ip dhcp excluded-address 10.10.10.160 10.10.10.254
>ip dhcp excluded-address 10.10.10.161
>!
>ip dhcp pool CLIENT
> import all
> network 10.10.10.0 255.255.255.0
> default-router 10.10.10.1
> lease 0 2
>!
>ip audit notify log
>ip audit po max-events 100
>!
>!
>!
>!
>interface Ethernet0
> ip address 10.10.10.1 255.255.255.0
> ip nat inside
> ip tcp adjust-mss 1452
> no cdp enable
> hold-queue 32 in
> hold-queue 100 out
>!
>interface Ethernet1
> no ip address
> pppoe enable
> pppoe-client dial-pool-number 1
> no cdp enable
>!
>interface Dialer1
> ip address negotiated
> ip mtu 1492
> ip nat outside
> encapsulation ppp
> ip tcp adjust-mss 1452
> dialer pool 1
> dialer-group 1
> ppp authentication chap pap callin
> ppp chap hostname ...
> ppp chap password ...
> ppp pap sent-username ...
> ppp ipcp dns request
> ppp ipcp wins request
>!
>ip nat inside source list 102 interface Dialer1 overload
>ip nat inside source static tcp 10.10.10.161 21 interface Dialer1 21
>ip nat inside source static tcp 10.10.10.161 80 interface Dialer1 80
>ip nat inside source static tcp 10.10.10.160 3008 interface Dialer1
>3008
>ip classless
>ip route 0.0.0.0 0.0.0.0 Dialer1
>ip http server
>!
>!
>access-list 23 permit 10.10.10.0 0.0.0.255
>access-list 102 permit ip 10.10.10.0 0.0.0.255 any
>dialer-list 1 protocol ip permit
>!
>line con 0
> exec-timeout 120 0
> no modem enable
> stopbits 1
>line aux 0
> stopbits 1
>line vty 0 4
> access-class 23 in
> exec-timeout 120 0
> login local
> length 0
>!
>scheduler max-task-time 5000
>end


 
Reply With Quote
 
 
 
 
Steve Richter
Guest
Posts: n/a
 
      05-20-2005

Fred Atkinson wrote:
> Try this,
>
> ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1

80

done. still not working. do I have to reboot?

here is the latest config:

!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname Router
!
no logging buffered
enable secret ...
!
username ...
username ...
ip subnet-zero
ip name-server 151.198.0.39
ip name-server 151.197.0.39
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.10.10.160 10.10.10.254
ip dhcp excluded-address 10.10.10.161
!
ip dhcp pool CLIENT
import all
network 10.10.10.0 255.255.255.0
default-router 10.10.10.1
lease 0 2
!
ip audit notify log
ip audit po max-events 100
!
!
!
!
interface Ethernet0
ip address 10.10.10.1 255.255.255.0
ip nat inside
ip tcp adjust-mss 1452
no cdp enable
hold-queue 32 in
hold-queue 100 out
!
interface Ethernet1
no ip address
pppoe enable
pppoe-client dial-pool-number 1
no cdp enable
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname ...
ppp chap password ...
ppp pap sent-username ...
ppp ipcp dns request
ppp ipcp wins request
!
ip nat inside source list 102 interface Dialer1 overload
ip nat inside source static tcp 10.10.10.161 21 interface Dialer1 21
ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1 80
ip nat inside source static tcp 10.10.10.160 3008 interface Dialer1
3008
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
!
!
access-list 23 permit 10.10.10.0 0.0.0.255
access-list 102 permit ip 10.10.10.0 0.0.0.255 any
dialer-list 1 protocol ip permit
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
stopbits 1
line vty 0 4
access-class 23 in
exec-timeout 120 0
login local
length 0
!
scheduler max-task-time 5000
end

 
Reply With Quote
 
Fred Atkinson
Guest
Posts: n/a
 
      05-21-2005
On 20 May 2005 12:28:22 -0700, "Steve Richter"
<(E-Mail Removed)> wrote:

>
>Fred Atkinson wrote:
>> Try this,
>>
>> ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1

>80
>
>done. still not working. do I have to reboot?


No. It should work.

Is there anything in an ACL applied to E1 or E0 that might
prevent this from working?


Fred

>here is the latest config:
>
>!
>version 12.2
>no service pad
>service timestamps debug uptime
>service timestamps log uptime
>service password-encryption
>!
>hostname Router
>!
>no logging buffered
>enable secret ...
>!
>username ...
>username ...
>ip subnet-zero
>ip name-server 151.198.0.39
>ip name-server 151.197.0.39
>ip dhcp excluded-address 10.10.10.1
>ip dhcp excluded-address 10.10.10.160 10.10.10.254
>ip dhcp excluded-address 10.10.10.161
>!
>ip dhcp pool CLIENT
> import all
> network 10.10.10.0 255.255.255.0
> default-router 10.10.10.1
> lease 0 2
>!
>ip audit notify log
>ip audit po max-events 100
>!
>!
>!
>!
>interface Ethernet0
> ip address 10.10.10.1 255.255.255.0
> ip nat inside
> ip tcp adjust-mss 1452
> no cdp enable
> hold-queue 32 in
> hold-queue 100 out
>!
>interface Ethernet1
> no ip address
> pppoe enable
> pppoe-client dial-pool-number 1
> no cdp enable
>!
>interface Dialer1
> ip address negotiated
> ip mtu 1492
> ip nat outside
> encapsulation ppp
> ip tcp adjust-mss 1452
> dialer pool 1
> dialer-group 1
> ppp authentication chap pap callin
> ppp chap hostname ...
> ppp chap password ...
> ppp pap sent-username ...
> ppp ipcp dns request
> ppp ipcp wins request
>!
>ip nat inside source list 102 interface Dialer1 overload
>ip nat inside source static tcp 10.10.10.161 21 interface Dialer1 21
>ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1 80
>ip nat inside source static tcp 10.10.10.160 3008 interface Dialer1
>3008
>ip classless
>ip route 0.0.0.0 0.0.0.0 Dialer1
>ip http server
>!
>!
>access-list 23 permit 10.10.10.0 0.0.0.255
>access-list 102 permit ip 10.10.10.0 0.0.0.255 any
>dialer-list 1 protocol ip permit
>!
>line con 0
> exec-timeout 120 0
> no modem enable
> stopbits 1
>line aux 0
> stopbits 1
>line vty 0 4
> access-class 23 in
> exec-timeout 120 0
> login local
> length 0
>!
>scheduler max-task-time 5000
>end


 
Reply With Quote
 
Fred Atkinson
Guest
Posts: n/a
 
      05-21-2005
On 20 May 2005 12:28:22 -0700, "Steve Richter"
<(E-Mail Removed)> wrote:

>
>Fred Atkinson wrote:
>> Try this,
>>
>> ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1

>80
>
>done. still not working. do I have to reboot?
>
>here is the latest config:
>
>!
>version 12.2
>no service pad
>service timestamps debug uptime
>service timestamps log uptime
>service password-encryption
>!
>hostname Router
>!
>no logging buffered
>enable secret ...
>!
>username ...
>username ...
>ip subnet-zero
>ip name-server 151.198.0.39
>ip name-server 151.197.0.39
>ip dhcp excluded-address 10.10.10.1
>ip dhcp excluded-address 10.10.10.160 10.10.10.254
>ip dhcp excluded-address 10.10.10.161
>!
>ip dhcp pool CLIENT
> import all
> network 10.10.10.0 255.255.255.0
> default-router 10.10.10.1
> lease 0 2
>!
>ip audit notify log
>ip audit po max-events 100
>!
>!
>!
>!
>interface Ethernet0
> ip address 10.10.10.1 255.255.255.0
> ip nat inside
> ip tcp adjust-mss 1452
> no cdp enable
> hold-queue 32 in
> hold-queue 100 out
>!
>interface Ethernet1
> no ip address
> pppoe enable
> pppoe-client dial-pool-number 1
> no cdp enable
>!
>interface Dialer1
> ip address negotiated
> ip mtu 1492
> ip nat outside
> encapsulation ppp
> ip tcp adjust-mss 1452
> dialer pool 1
> dialer-group 1
> ppp authentication chap pap callin
> ppp chap hostname ...
> ppp chap password ...
> ppp pap sent-username ...
> ppp ipcp dns request
> ppp ipcp wins request
>!
>ip nat inside source list 102 interface Dialer1 overload
>ip nat inside source static tcp 10.10.10.161 21 interface Dialer1 21
>ip nat inside source static tcp 10.10.10.161 80 interface Ethernet1 80
>ip nat inside source static tcp 10.10.10.160 3008 interface Dialer1
>3008
>ip classless
>ip route 0.0.0.0 0.0.0.0 Dialer1
>ip http server
>!
>!
>access-list 23 permit 10.10.10.0 0.0.0.255
>access-list 102 permit ip 10.10.10.0 0.0.0.255 any
>dialer-list 1 protocol ip permit
>!
>line con 0
> exec-timeout 120 0
> no modem enable
> stopbits 1
>line aux 0
> stopbits 1
>line vty 0 4
> access-class 23 in
> exec-timeout 120 0
> login local
> length 0
>!
>scheduler max-task-time 5000
>end


I just noticed that there is no IP address associated with you
Ethernet 1 port. You might want to check that. But how are you
accessing the Internet without it?


Fred

 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
forwarding Args&&... vs forwarding Args... Andrew Tomazos C++ 5 01-05-2012 11:15 PM
Cisco 2600 - Inbound NAT translation/Port-forwarding not working Greg Hardware 0 11-20-2008 07:33 PM
Router Port forwarding/port triggering WHAT DO THEY DO? ToyalP2 Computer Support 7 01-07-2008 08:08 AM
cisco pix 515 port forwarding - NOT possible? hard to believe.. google@pilotsupplies.com Cisco 10 07-28-2005 04:21 PM
session variable not working with frame forwarding nicholas ASP .Net 0 07-20-2005 10:51 AM



Advertisments