We help IT Professionals succeed at work.
Get Started

Cisco Catalyst 2950

usmansultan
usmansultan asked
on
37 Comments
2 Solutions
784 Views
Last Modified: 2012-05-09
we want to open up a connection to the inside and outside world, my ISP has done this
"I have setup a reverse proxy on our revproxies listening on nnn.nnn.nnn.nn and nnn.nnn.nnn.nn  listening on the http port (80).
I have setup DNS entries for the two domains webmail.au and contracts.au pointing to both of these addresses.
These proxies forward the traffic to nnn.nnn.nnn.nn  port 81. (his lotus domino server)
 
The client will need to do the redirects to the nsf files himself based on the names passed.
 
I have tried to test the connection from the proxy servers to the client server.
 
tests failed.
 
The client will need to ensure he allows access to his server nnn.nnn.nnn.nn from the our proxy servers nnn.nnn.nnn.nn  and nnn.nnn.nnn.nn ."

i will write down the show run, for the switch.......
version 12.1
no service pad
service timestamps debug uptime
service timestamps log datetime
no service password-encryption
service sequence-numbers
!
hostname q10
!

!
clock timezone UTC 10
ip subnet-zero
!
cluster enable q10
!
spanning-tree mode pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
!
!
!
interface FastEthernet0/1
 description CITEC ADSL Router
 switchport mode access
 duplex full
 spanning-tree portfast
!
interface FastEthernet0/2
 description CITEC to QAO-FW1-Primary (mgmt)
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/3
 description CITEC to QAO-FW1-Secondary (mgmt)
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/4
 description SOUL ADSL Router
 switchport access vlan 102
 switchport mode access
 speed 100
 duplex full
 spanning-tree portfast
 spanning-tree bpdufilter enable
!
interface FastEthernet0/5
 description SOUL to QAO-FW1-Primary (e0/0)
 switchport access vlan 102
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/6
 description SOUL to QAO-FW1-Secondary (e0/0)
 switchport access vlan 102
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/7
 description AMQLD Server
 switchport access vlan 103
 switchport mode access
 spanning-tree portfast

!
interface FastEthernet0/8
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/9
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/10
 description Magellan Server
 switchport access vlan 104
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/11
 description WEB01
 switchport access vlan 104
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/12
 description Connection to QAO_ASA_10_Primary (e0/2) (CITEC)
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/13
 description Connection to QAO_ASA_10_Secondary (e0/2) (CITEC)
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/14
 description Germes Monitoring
 switchport access vlan 106
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/15
 description Connection to QAO-FW1-Primary (e0/2)
 switchport mode trunk
!
interface FastEthernet0/16
 description Connection to QAO-FW1-Secondary (e0/2)
 switchport mode trunk
!
interface FastEthernet0/17
 switchport mode access
 spanning-tree portfast
 --More—

interface FastEthernet0/18
 description Lotus Cluster Network
 switchport access vlan 106
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/19
 description Lotus Cluster Network
 switchport access vlan 106
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/20
 description Lotus Cluster Network
 switchport access vlan 106
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/21
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/22
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/23
 switchport mode access
 spanning-tree portfast
!
interface FastEthernet0/24
 description Telstra GWIP Connection
 switchport access vlan 105
 switchport mode access
 speed 100
 duplex full
 spanning-tree bpdufilter enable
!
interface GigabitEthernet0/1
 description Connection to QAO-ASA-10-Primary (e0/0)
 switchport access vlan 105
 switchport mode access
!
interface GigabitEthernet0/2
 description Connection to QAO-ASA-10-Secondary (e0/0)
 switchport access vlan 105
 --More—
interface Vlan1
 no ip address
 no ip route-cache
 shutdown
!
interface Vlan106
 ip address nnn.nnn.nnn.nn
 no ip route-cache
!
ip http server
!
ip access-list extended CMP-NAT-ACL
 dynamic Cluster-HSRP deny   ip any any
 dynamic Cluster-NAT permit ip any any
access-list 60 permit nnn.nn.n.n
snmp-server community q
snmp-server community qa
!
line con 0
line vty 0 4
 
 login
line vty 5 15
 
 login
!
ntp clock-period 1
ntp server nnn.nnn.n.n
!
end

kindly let me know if i have to do any firewall configuration, or should i add the IP addresses to the VLAN 104....
one of the server NIC is already connected to this switch on port 11 (i.e. VLAN 104), so should i add one more interface and VLAN port?
Comment
Watch Question
Commented:
This problem has been solved!
Unlock 2 Answers and 34 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE