• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 376
  • Last Modified:

NAT - Cisco - Port Translation from inside to inside possible?

We have a customer that we deployed a 1711 Cisco to recently.  They have a fixed IP address from us (ISP).  Internally they have 192.168.2.0/24 subnet

They requested an internal web server be reachable from the outside world so we did a NAT translation for this.. no problem.

Let's say their public IP is 1.2.3.4

From internally, they would like to reach the webserver at 1.2.3.4 instead of the internal address of 192.168.2.10

Is there a way to do this in this setup?

Thanks.
0
kpmas
Asked:
kpmas
1 Solution
 
lrmooreCommented:
No can do, sir. In order for the NAT to happen, packets *must* physically pass through the "nat outside" interface before a packet will be translated to the static internal IP. Since the packet originates on the "nat inside" interface and cannot possibly go outside and back in through the nat outside interface, there is now way for the router to do it.
The PIX has some tricks like "alias" and "dns doctoring", but those are not available on IOS routers.
0
 
kpmasAuthor Commented:
Thanks for the answer... appreciate it... I just wanted to hear confirmation from an expert..:)

Paul
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now