Pagina 1 di 1
domanda semplice telnet da wan/lan
Inviato: mer 22 ago , 2007 11:04 am
da betati
Ciao a tutti una domanda secca perchè se inserisco il comando:
ip nat inside source static tcp x.x.x.x 3389 x.x.x.x 3389 extendable
non telnetto piu il router sia su lan che wan?
grazie a tutti coloro mi faranno chiarezza.
Inviato: mer 22 ago , 2007 3:50 pm
da Wizard
Mhm...mi sembra un po' strano.
Facci vedere la config completa.
Inviato: mer 22 ago , 2007 5:28 pm
da betati
ecco la mia config p.s. sono auto didatta in materia e chiedo scusa per eventuali errori grazie
Building configuration...
Current configuration : 1998 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname ADSL
!
enable secret xxxxxxxxx/
enable password xxxxxxxxxx
!
username cisco password xxxxxx
ip subnet-zero
!
!
no ip domain-lookup
!
!
!
!
!
!
!
!
fax interface-type fax-mail
mta receive maximum-recipients 0
!
!
!
!
interface ATM0/0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
no fair-queue
!
interface ATM0/0.1 point-to-point
ip address 213.199.x.x 255.255.255.0
ip nat outside
pvc 8/35
encapsulation aal5snap
!
!
interface FastEthernet0/0
ip address 192.168.99.254 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface Serial0/0
no ip address
shutdown
!
ip nat inside source list 101 interface ATM0/0.1 overload
ip nat inside source static tcp 192.168.99.238 3389 213.199.x.x 3389 extendable
ip nat inside source static udp 192.168.99.101 5060 213.199.x.x 5060 extendable
ip nat inside source static udp 192.168.99.101 2727 213.199.x.x 2727 extendable
ip nat inside source static udp 192.168.99.101 2427 213.199.x.x 2427 extendable
ip nat inside source static udp 192.168.99.101 10000 213.199.x.x 10000 extendable
ip nat inside source static udp 192.168.99.101 10001 213.199.x.x 10001 extendable
ip nat inside source static udp 192.168.99.101 10002 213.199.x.x 10002 extendable
ip nat inside source static udp 192.168.99.101 20000 213.199.x.x 20000 extendable
ip nat inside source static udp 192.168.99.101 20001 213.199.x.x 20001 extendable
ip nat inside source static udp 192.168.99.101 20002 213.199.x.x 20002 extendable
ip classless
ip route 0.0.0.0 0.0.0.0 ATM0/0.1
ip http server
ip http port 8888
ip pim bidir-enable
!
!
access-list 101 permit ip any any
access-list 101 permit ip host 192.168.99.254 any
!
call rsvp-sync
!
!
mgcp profile default
!
dial-peer cor custom
!
!
!
!
line con 0
login local
line aux 0
line vty 0 4
password xxxxx
login local
!
!
end
Inviato: mer 22 ago , 2007 9:04 pm
da Wizard
Intanto:
Codice: Seleziona tutto
no access-list 101
no enable password
access-l 101 permit ip 192.168.99.0 0.0.0.255 any
telnet ok
Inviato: gio 23 ago , 2007 4:24 pm
da betati
Inviato: ven 24 ago , 2007 8:07 am
da Wizard
Tu vuoi racchidere tutte queste righe di nat in una unica?
ip nat inside source static udp 192.168.99.101 5060 213.199.x.x 5060 extendable
ip nat inside source static udp 192.168.99.101 2727 213.199.x.x 2727 extendable
ip nat inside source static udp 192.168.99.101 2427 213.199.x.x 2427 extendable
ip nat inside source static udp 192.168.99.101 10000 213.199.x.x 10000 extendable
ip nat inside source static udp 192.168.99.101 10001 213.199.x.x 10001 extendable
ip nat inside source static udp 192.168.99.101 10002 213.199.x.x 10002 extendable
ip nat inside source static udp 192.168.99.101 20000 213.199.x.x 20000 extendable
ip nat inside source static udp 192.168.99.101 20001 213.199.x.x 20001 extendable
ip nat inside source static udp 192.168.99.101 20002 213.199.x.x 20002 extendable
Se è così prova in questo modo (non assicuro nulla perchè non lo ho mai fatto):
ip nat inside source list 111 interface atm0.1
Poi crei la acl 111 dove metti tutte le regole che vuoi creare.
