Solved

Configure multiple ports for NAT in one command?

Posted on 2008-09-29
6
854 Views
Last Modified: 2013-12-27
Im trying to configure a block of ports to be NAT'd to a machine on the internal network. Its for our new VoIP system. Ports 10000-10500 need to be open and I dont want to have to write this for every single port:

ip nat inside source static udp 192.168.43.230 10000 interface FastEthernet0 10000

Is there a form of this command that will allow to specify the entire range of ports to be NAT'd?
0
Comment
Question by:vizient
6 Comments
 
LVL 3

Accepted Solution

by:
TheTechMan earned 500 total points
Comment Utility
Try creating an IP NAT POOL:

ip nat pool POOL1 192.168.43.230  192.168.43.230  netmask 255.255.255.0 type rotary
ip nat inside source list 1 interface FastEthernet0 overload
ip nat inside destination list MYNATPORTS pool POOL1
!
ip access-list extended MYNATPORTS
 permit udp any any range 10000 15000
0
 

Author Comment

by:vizient
Comment Utility
Thanks! I will test it out tonight and let you know how it goes tomorrow morning.
0
 
LVL 8

Expert Comment

by:Jay_Gridley
Comment Utility
If this works I'll add this to my knowledgebase... I've had this same problem myself in the past ;-)
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
Yes, that will work - it's called "Policy NAT" - basically where you use an Access-List to create a "policy" and then apply it to a NAT statement.
Let me know if you need any more help!
Cheers! :-)
0
 
LVL 3

Expert Comment

by:TheTechMan
Comment Utility
Hello, did my answer work for you?  Please close out the question if you can?
0
 
LVL 3

Expert Comment

by:TheTechMan
Comment Utility
Whooops... sorry...  I misread something.  I'm glad it helped out, and I'm sorry for the confusion here.  Take care!
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

There are no good configuration guides for HP-H3C router to LYNC on the web. :( Big statement, but we havent been able to find one yet. We did find the following document useful, but the information was not enough to use H3C router for use as a L…
Hey there Heard about jingle, the add on for XMPP that enables point to point audio between two XMPP clients. No server config necessary. Actually quite a cool feature. However, how good is it if you can not use those voice capabilities to do a P…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now