Ho solo un ultima necessità.
Ho nattato correttamente delle porte verso dei server all'interno della mia rete. Riesco a raggiungerli perfettamente dall'esterno utilizzando il mio ip pubblico.
Internamente però vorrei poterli raggiungere sempre tramite ip pubblico e non quello della lan questo perché i dispositivi dal quale si accede (notebook o smartphone) a volte sono all''interno e a volte all'esterno.
Copio di seguito la mia configurazione.
Grazie a tutti per l'aiuto.
Codice: Seleziona tutto
Current configuration : 2659 bytes
!
version 12.4
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname xxx
!
boot-start-marker
boot-end-marker
!
enable secret 5 xxxxxxxx
!
no aaa new-model
!
!
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.0.0.180 192.0.0.254
!
ip dhcp pool CLIENT
import all
network 192.0.0.0 255.255.255.0
default-router 192.0.0.254
dns-server 192.0.0.250 8.8.8.8
lease 0 2
!
!
ip cef
ip domain name xxx.it
!
vpdn enable
!
vpdn-group 1
request-dialin
protocol pppoe
l2tp tunnel receive-window 128
ip mtu adjust
!
!
!
username xxx privilege 15 password 0 xxx
username yyy password 0 xxx
archive
log config
hidekeys
!
!
!
!
!
interface ATM0
no ip address
atm vc-per-vp 64
no atm ilmi-keepalive
pvc 8/35
pppoe-client dial-pool-number 1
!
dsl operating-mode auto
!
interface FastEthernet0
hold-queue 100 out
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
ip address 192.0.0.254 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer remote-name redback
dialer-group 1
ppp authentication pap chap callin
ppp chap hostname xxx
ppp chap password 0 xxx
ppp pap sent-username xxx password 0 xxx
ppp ipcp dns request
ppp ipcp wins request
!
ip route 0.0.0.0 0.0.0.0 Dialer1
!
no ip http server
no ip http secure-server
ip nat inside source list 102 interface Dialer1 overload
ip nat inside source static tcp 192.0.0.100 81 80.000.000.1 81 extendable
ip nat inside source static tcp 192.0.0.101 82 80.000.000.1 82 extendable
ip nat inside source static tcp 192.0.0.102 83 80.000.000.1 83 extendable
ip nat inside source static tcp 192.0.0.103 84 80.000.000.1 84 extendable
ip nat inside source static tcp 192.0.0.201 85 80.000.000.1 85 extendable
ip nat inside source static tcp 192.0.0.253 86 80.000.000.1 86 extendable
ip nat inside source static tcp 192.0.0.253 87 80.000.000.1 87 extendable
!
access-list 102 permit ip 192.0.0.0 0.0.0.255 any
access-list 123 permit ip 192.0.0.0 0.0.0.255 any
dialer-list 1 protocol ip permit
!
control-plane
!
!
line con 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
access-class 123 in
exec-timeout 120 0
login local
length 0
transport input ssh
!
scheduler max-task-time 5000
end