Solved

Cisco 1760 - IP Nat question - GRE

Posted on 2006-06-26
5
637 Views
Last Modified: 2008-03-06
Hi All,

I have been playing with this for a bit now, and dont want to go for my standard hit and miss routine any more!

For the purposes of this exercise, I have 1 global IP - I want that to connect to 3 servers

This should be simple;

ip nat source static tcp insideip1 80 outisdeip 80
ip nat source static tcp insideip2 25 outsideip 25

(i may have left something out of that, but you get the idea - this is all working fine)

Now, the problem is, I want one of those to go to a PPTP server - how do I get GRE to map the same way?

I know I can; ip nat source static tcp insideip3 1723 outsideip 1723 - but that isnt working, and I am assuming the problem is GRE

Ideas, suggestions???


thanks in advance

-red
0
Comment
Question by:redseatechnologies
  • 3
  • 2
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 16983294
It's a big problem. For GRE you must use a 1-1 static nat. You cannot PAT becuase there is no concept of ports with GRE - it's all or nothing. PAT only works for TCP | UDP
There is no workaround. You need a 2nd global for the GRE to work
0
 
LVL 39

Author Comment

by:redseatechnologies
ID: 16988595
Thanks for coming lrmoore - I appreciate your time.

I was hoping you weren't going to say that, but thought that may be the case.

I dont think this will work either, but humour me :)

Could I;

ip nat source static insideip1 outisdeip
ip nat source static tcp insideip2 80 outsideip 80

?

static 1-1 from the global to the rras server - then another on top of that.......

that isnt going to work either, is it

-red
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16988757
'Friad not, my friend...
It's either / or
Either 1-1 nat
or Per port NAT
0
 
LVL 39

Author Comment

by:redseatechnologies
ID: 16988942
Bugger!

oh well, no second vpn :)

Thanks again for your help lrmoore!

-red
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16989081
Thanks! I wish I had better news for you...

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now