Velocity Reviews - Computer Hardware Reviews
Home Forums Reviews Guides Newsgroups Register Search
Member Login:

Velocity Reviews > Newsgroups > Computing > Cisco > Cisco Nat Internal > External > Internal

Reply
Thread Tools

Cisco Nat Internal > External > Internal

 
 
dcpearso dcpearso is offline
Junior Member
Join Date: Mar 2008
Posts: 6
 
      03-08-2008
I know that this has been a problem for quite some time now. I was wondering if anyone has found a router based solution...


I have a web server address = y.y.y.y

The router is performing nat from an external address x.x.x.x to the internal y.y.y.y on port 80.

External access to the web server works perfectly using ip nat inside source static tcp y.y.y.y 80 x.x.x.x 80

The problem is that when a user on the internal subnet y.y.y.() tries to access the web server on the external x.x.x.x address it fails.

From all of the forums i have read it seems that this is not a supported feature in the cisco Ip nat feature set. I find this amazing beause a linksys router and even a d-link can do this!

I have played around with route-maps and a few other ideas but still no luck.

My question is has anyone else managed to fix this issue?

The solutions i have seen so far is to point DNS to the router and make the change in dns.

Modify the computers host file...

Use two routers.

Anything else????


Cheers

DP
 
Reply With Quote
 
 
 
 
Greeley Greeley is offline
Member
Join Date: Dec 2007
Posts: 67
 
      03-08-2008
Add a second NIC to your web server give it an internal ip address and then point the internal users to the inside web address instead of the outside address.

--G
 
Reply With Quote
 
 
 
 
dcpearso dcpearso is offline
Junior Member
Join Date: Mar 2008
Posts: 6
 
      03-08-2008
If only it were that simple. The website the users are accessing is an external website that i have no control over. There is a link on this site that points to one of my external IP's as we are hosting that portion of the site.

There are too many users to tell them to go to an internal address... My only real option is to intercept the DNS request as it hits the router and get it to somehow change the address it is reequesting....(NAT should be able to do this). My problem is that cisco doesnt support internal external internal nat access.

I thought about giving the webserver the live IP as well as the internal IP and only allowing port 80 access to it....

I just wish that someone has comeup with a config that would let the cisco give access to the external ip to internal users...
 
Reply With Quote
 
dcpearso dcpearso is offline
Junior Member
Join Date: Mar 2008
Posts: 6
 
      03-23-2008
Has anyone else had any thoughts here?

Much appreciated.....
 
Reply With Quote
 
 
 
Reply

« Connect 2 2950s | ipsec vpn between ASA 5505 and PIX 501 »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
cisco ios nat from internal->external->internal Bob Cisco 0 12-11-2006 01:05 PM
Newbie: Cisco 800-series - Access internal server via external IP, when using NAT? Jim Willsher Cisco 5 05-12-2006 01:18 PM
Cisco PIX 501 - Port forwarded to an internal host via Static NAT doesn't work from internal host JoelSeph Cisco 9 01-23-2006 03:52 PM
Routing to public IP of NAT address from internal NAT address Andrew Albert Cisco 1 02-08-2005 07:05 PM
internal to internal NAT? Mike Cisco 1 04-21-2004 12:15 PM



Advertisments
 


Powered by vBulletin®. Copyright ©2000 - 2013, vBulletin Solutions, Inc..
SEO by vBSEO ©2010, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top