Cisco NAT range ports

Publié le Auteur manuLaisser un commentaire

This article describes how to open a range port from outside to an inside server.

fa0/0 is public interface
Public interface has IP address
fa0/1 is lan interface
LAN network is

Create an extended acl

R1(config)#ip access-list extended NAT_SERVER1
r0(config-ext-nacl)#permit tcp host range 40000 60000 any
r0(config-ext-nacl)#permit udp host range 40000 60000 any

Associate the acl to the route-map

R1(config)#route-map NAT_SERVER1_RULES per 10
R1(config)#match ip address NAT_SERVER1

Finaly nat with route-map

R1(config)#ip nat inside source static route-map NAT_SERVER1

Laisser un commentaire