jmac44
asked on
Cisco routing
I have a cisco 1841 running OS version 12.4.
interface FastEthernet0/0
description Internet Connection
ip address 63.41.101.104 255.255.255.248
ip access-group fromoutside in
no ip redirects
no ip unreachables
no ip proxy-arp
ip inspect in2out out
ip nat outside
ip virtual-reassembly
no ip route-cache cef
no ip route-cache
no ip mroute-cache
duplex auto
speed auto
no cdp enable
crypto map RTPCLIENT
!
I'm using static nating for map routes from the outside. Everything is working great on the router. Two specific rules are setup to allow an iPad app to run from an internal network server.
ip nat inside source static tcp <server ip address> <port no.> <63.41.101.104 <port no.> extendable
and
permit tcp any host 63.41.101.104 eq <port no.>
I can access the app form outside the network but not from inside the network.
How do I set NAT and/or access-list to access the app from inside the network?
Supplemental: Web Server is Debian Linux and firewall rules are turned off.
interface FastEthernet0/0
description Internet Connection
ip address 63.41.101.104 255.255.255.248
ip access-group fromoutside in
no ip redirects
no ip unreachables
no ip proxy-arp
ip inspect in2out out
ip nat outside
ip virtual-reassembly
no ip route-cache cef
no ip route-cache
no ip mroute-cache
duplex auto
speed auto
no cdp enable
crypto map RTPCLIENT
!
I'm using static nating for map routes from the outside. Everything is working great on the router. Two specific rules are setup to allow an iPad app to run from an internal network server.
ip nat inside source static tcp <server ip address> <port no.> <63.41.101.104 <port no.> extendable
and
permit tcp any host 63.41.101.104 eq <port no.>
I can access the app form outside the network but not from inside the network.
How do I set NAT and/or access-list to access the app from inside the network?
Supplemental: Web Server is Debian Linux and firewall rules are turned off.
Not sure this has anything to do with your router...when you are on the inside of the network you access the app using the internal ip address...are you saying this isn't working?
ASKER
No, it is accessing the router. The vendor who created the app has it pointing to the routers external IP address and they won't change it. The simplest method would be to change the app to point to the server's host name but the vendor can't/won't do that either.
I specifically need a way to reverse the query from the router back to the server.
I specifically need a way to reverse the query from the router back to the server.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
on cisco 1841 you cannot acces your server from inside using public ip adress. Only ASA knows from the begging that your ip is nated to an inside address, the process is named hairpinning.