naweed sayedy
asked on
portforwarding
i want to do port forwarding to share home webserver on the internet .
i use ip nat inside source static tcp 192.168.1.5 80 interface gi0/0
but it is not working.
i don't know what to do
Building configuration...
Current configuration : 2000 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname DHCP-Server
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$K0OI$7rFPJ32VUIm4QXxC6x
enable password sakhizada
!
aaa new-model
!
!
aaa group server tacacs+ sakhizada
server 192.168.1.4
!
aaa authentication login default local
aaa authorization exec default group tacacs+ local
!
!
aaa session-id common
clock timezone Kabul 4 30
no ip routing
!
!
no ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.0.1 192.168.0.40
ip dhcp excluded-address 192.168.1.1 192.168.1.20
!
ip dhcp pool ITCKPUPool
network 192.168.0.0 255.255.255.0
default-router 192.168.0.1
dns-server 192.168.0.2 192.168.0.3
domain-name ITCKPU.EDU.AF
lease 0 1
!
ip dhcp pool ITPool
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 192.168.0.2 192.168.0.3
domain-name ITCKPU.EDU.AF
!
!
ip domain name ITCKPU.EDU.AF
multilink bundle-name authenticated
!
!
!
username admin privilege 15 password 0 cisco
archive
log config
hidekeys
!
!
!
class-map match-any UNWANTED-PCs
match source-address mac 0024.D687.343C
match source-address mac B452.7E75.B48D
match source-address mac CC20.E883.25A4
!
!
policy-map block
class UNWANTED-PCs
drop
!
!
!
!
interface GigabitEthernet0/0
description LAN-Interface
ip address 192.168.0.4 255.255.255.0
no ip route-cache
duplex auto
speed auto
no mop enabled
!
interface GigabitEthernet0/1
description "LAN Interface"
ip address 192.168.1.4 255.255.255.0
no ip route-cache
duplex auto
speed auto
service-policy input block
!
ip forward-protocol nd
!
!
ip http server
ip http access-class 20
ip http authentication aaa
!
access-list 20 permit 192.168.1.0 0.0.0.255
snmp-server community public RO
!
tacacs-server host 192.168.1.4 key cisco
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
password cisco
line vty 5 15
!
scheduler allocate 20000 1000
!
end
i use ip nat inside source static tcp 192.168.1.5 80 interface gi0/0
but it is not working.
i don't know what to do
Building configuration...
Current configuration : 2000 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname DHCP-Server
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$K0OI$7rFPJ32VUIm4QXxC6x
enable password sakhizada
!
aaa new-model
!
!
aaa group server tacacs+ sakhizada
server 192.168.1.4
!
aaa authentication login default local
aaa authorization exec default group tacacs+ local
!
!
aaa session-id common
clock timezone Kabul 4 30
no ip routing
!
!
no ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.0.1 192.168.0.40
ip dhcp excluded-address 192.168.1.1 192.168.1.20
!
ip dhcp pool ITCKPUPool
network 192.168.0.0 255.255.255.0
default-router 192.168.0.1
dns-server 192.168.0.2 192.168.0.3
domain-name ITCKPU.EDU.AF
lease 0 1
!
ip dhcp pool ITPool
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 192.168.0.2 192.168.0.3
domain-name ITCKPU.EDU.AF
!
!
ip domain name ITCKPU.EDU.AF
multilink bundle-name authenticated
!
!
!
username admin privilege 15 password 0 cisco
archive
log config
hidekeys
!
!
!
class-map match-any UNWANTED-PCs
match source-address mac 0024.D687.343C
match source-address mac B452.7E75.B48D
match source-address mac CC20.E883.25A4
!
!
policy-map block
class UNWANTED-PCs
drop
!
!
!
!
interface GigabitEthernet0/0
description LAN-Interface
ip address 192.168.0.4 255.255.255.0
no ip route-cache
duplex auto
speed auto
no mop enabled
!
interface GigabitEthernet0/1
description "LAN Interface"
ip address 192.168.1.4 255.255.255.0
no ip route-cache
duplex auto
speed auto
service-policy input block
!
ip forward-protocol nd
!
!
ip http server
ip http access-class 20
ip http authentication aaa
!
access-list 20 permit 192.168.1.0 0.0.0.255
snmp-server community public RO
!
tacacs-server host 192.168.1.4 key cisco
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
password cisco
line vty 5 15
!
scheduler allocate 20000 1000
!
end
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
John
Solutions offered