Cisco WAN :: 887VA NAT Port Range And Multiple Servers

May 22, 2013

I am struggling to get our 887VA setup for our config.
 
We have a public IP range from our ISP and we have multiple servers behind our router. One of the servers need large ranges of ports open so I have ended up trying to use a ‘rotary’ nat pool which works fine but I cannot get the other servers to NAT correctly on their ports. It seems the rotary takes over.
 
Here is a snip of my config.
 
interface Ethernet0no ip addressshutdown!interface ATM0no ip addressno atm ilmi-keepalive!interface ATM0.1 point-to-pointpvc 0/38  encapsulation aal5mux ppp dialer  dialer pool-member 1!!interface FastEthernet0description Private LANno ip

[Code].....

View 1 Replies


ADVERTISEMENT

Servers :: Redirect Multiple Domain Names To Same IP / Different Port?

Aug 19, 2012

Redirecting a Domain to a IP:Port I host game servers for friends and strangers alike, but i'd like to make it easier for them all and give them dedicated IPs. Right now I include domain redirecting, but to connect to their server, they have to put in "example.com:xxxxx", x meaning their servers dedicated port. Is there any way that I can redirect a domain directly to "IP:Port"?

View 3 Replies View Related

Cisco WAN :: Does The 887VA Have A WAN Port

Feb 13, 2013

Firstly does the 887VA have a WAN port? I know it does VDSLIf this model is doesn't have both these options do you know which model does?

View 1 Replies View Related

Cisco Switching/Routing :: Possible To Use Inbuilt 4 Port Switch On 887VA

Jul 16, 2012

Is it possible to use the inbuilt 4 port switch on a Cisco 887VA ADSL router for inter Vlan routing? My plan is to configure port FA0 - 2 as Vlan 1 (default) 192.168.0.254/24 and port FA3 as Vlan 2 192.168.4.254/30. My SIP server will sit on Vlan 2 192.168.4.253/30 however remote Wan users coming through other Cisco 888 routers connected to the 887 will need to access Vlan 2 from Vlan 1, is this possible?

View 12 Replies View Related

Cisco WAN :: Difference Between 887VA-K9 And 887VA-SEC-K9

Aug 30, 2012

difference of CISCO887VA-K9 and CISCO887VA-SEC-K9.I thought it because of the Advanced Security and Advanced IP Licenses, but it isn't, I've got the -SEC- Version now just with the Advanced Security license. So I asking myself why I bought the more expensive CISCO887VA-SEC-K9 if I have to buy the additional Advanced IP Services licenses extra..

View 14 Replies View Related

Cisco Firewall :: 5520 - Multiple Global IP Address Range On ASA Outside I/f

Mar 17, 2011

Got an ASA5520 running V8.2(3) and we want to upgrade our internet bandwidth. Our ISP says OK but we need to install different physical circuit, upgrade CPE router, etc.
 
Then they say, btw your globally allocated IPs will change - this is a problem as we have Site-to-Site VPN Tunnels, IPSEC RA, etc.
 
ISP are proposing to give us a 3 month period whereby old & new IP blocks will be routed to our ASA (by means of secondary IP address on their Cisco CPE).
 
Multiple IPs on the same physical i/f on the ASA require sub-interfaces/IP Addresses/VLAN ids on my "outside" i/f.
 
Is this going to horiibly break Site-to-Site VPN Tunnesl, IPSEC remote access ?
 
Will VLANs work at all with IPSEC on the "oustide" i/f at all ?

View 2 Replies View Related

Cisco :: 871 - Configuring Static Nat For Multiple Web Servers

Mar 13, 2012

I am trying to configure a Cisco 871 router.There are 3 servers on my network that need static public IPs but also still need to communicate on the local network.I have given my WAN interface the first IP in the block and set up PAT for the rest of the computers on the network with that IP which is working fine. Next I set up static NAT rules for the servers translating 3 of the remaining public IPs to the internal addresses of the servers.I can access those servers internally using the public IPs but not from outside the network. A traceroute from outside the network gets dropped when it gets to my ISP.I've never configured more than one static ip for a network before and i know i've just missed a step here. Do I also need to use static routes? Will that update the next hop's routing table? Do I need to make an ACL to permit any host to the servers? If so, do I use the internal or external address? [code]

View 2 Replies View Related

Connecting Multiple Routers Via Ethernet Cable For Range?

Dec 20, 2012

Although I haven't looked through all the forum topics I couldn't find anything very similar to my situation. I have a rather large house and my modem/router (Netgear DGND3300 v2 due to DSL) is in the very corner. Given this most of the opposite corner of my house gets either poor or no connection; however, I do have an ethernet cable run across the house through the basement to my home theatre setup. This is where I encounter another problem, I need multiple devices to be connected via ethernet and I also need to have wireless in that same area. In my mind I picture myself connecting a second router to this ethernet cable through which I could have wired connections to all my devices, and a second router broadcasting wirelessly. I'm familiar with some types of wireless bridging, but I'd rather use more of a wired bridge concept if possible, but I've never really seen something like this. The question is, is this possible? Or, what is another possible way to achieve the same results? The only other thing I can think of is to run an ethernet hub from the original wired connection to my home theatre so I can connect multiple ethernet devices and run a separate wireless extender or something, but this just seems pricy.

View 2 Replies View Related

Cisco :: 3550 Implementing Multiple DHCP Servers

May 2, 2011

i have the following scenario that i'm requesting you guys verify if it will work.I have a 3550 catalyst switch running EMI and an auotomous 1131AG aironet ap, i have two dhcp pools already setup on the switch one for the LAN and the other for the wireless clients.There  are two vlans on both the switch and ap for LAN and wireless clients.I have already setup multiple SSID's to be broadcasted from the AP, is there a way i can bind one SSID  to the lan dhcp pool and the other to the wireless clients dhcp pool?

View 1 Replies View Related

Cisco Firewall :: 2121 / How To Nat Multiple FTP Local Servers From One Single IP

Apr 24, 2013

I have a FTP server at my local network and i have natted the private IP with my Public IP using default FTP Port ( 21) , now i have created Diffrent FTP Account in my server using port 2121 and i am able to login using the private IP with port 2121 , now i want to nat with my public IP with port 2121 and i failed,

1) 125.x.x.x --------- 10.10.1.x : 21 ( Able to access from external network)
 
2) 125.x.x.x ---------- 10.10.1.x : 2121 ( not able to login from external network and able to login internally )

View 7 Replies View Related

Servers :: Changing Network Information Of Multiple Machines?

Sep 25, 2012

I have a list of servers that will be migrated from one subnet to another. Is there a script that can take my file that has the server name and the new IP address and modify the existing servers' network from the list? I want to place the script on the servers before I am ready to change subnets for preparation.

View 1 Replies View Related

Servers :: Mail Server Showing Multiple IP's When Pinged?

Mar 14, 2012

When I'm pinging my mail server, it gave me different IP's at different times. As the mail server is actually owned by us, I would like to know if that is possible without the IP actually being changed by someone.

View 8 Replies View Related

Cisco Firewall :: 6509 / Setup Multiple DMZs For Hosting Servers?

Aug 19, 2011

I would like to setup multiple DMZs for our hosting servers.  Currently there is a single DMZ in which our reverse proxy servers are connected using a public IP address.  The idea is to have the reverse proxy forward the request from the Internet to the hosting servers in another DMZ.  The purpose of the hosting DMZ is to protect it from the outside as well as from the inside.  There will also be a development DMZ where we can test content prior to going live with the website.
 
Network:   We currently have two Cisco 6509's (Core) with a FWSM in each running active/stanby configuration.  There is a 10Gb Fiber connection between each Cisco switch to two Cisco 4948s (Top of Rack Switches).  I can either setup OSPF or Trunking between the core and top of rack switches.  The Cisco 4948s will support VLAN 7 (hosting DMZ 10.0.7.0/24) and VLAN 8 (development DMZ 10.0.8.0/24).  Each webserver is connected to both Cisco 4948 for redundancy.
 
Question:   If I have a single interface connecting both VLANs 7 and 8, either through Layer 2 or 3, then how can pass both DMZ traffic to the appropriate servers?  The reason why the servers are in the same rack connected to the same two switches is that we are using Blade Servers and VMWare.

View 3 Replies View Related

Cisco Application :: ACE 4710 Multiple Services Running On Load Balanced Servers

Jan 30, 2012

Our Exchange 2010 hub servers run multiple services/ports:  smtp, www, pop3,135, 143, https, 993, 995, 6001,6002,6003,60200,60201,8400, and 8402 what is the best way of balancing these servers so that if only one of the services failed on a server, it would switch only the failed service to remaining servers. At present I only use an smtp probe, so as log as that sevrice is running the server is marked good.

View 3 Replies View Related

Cisco :: PEAP MSCHAPv2 With Multiple ACS4.2 Authentication Servers Clients Get Dropped?

Feb 10, 2011

I have a WPA2/AES network with PEAP MsChapv2 authentication. I have 2 ACS servers for authentication. The problem I have is dropped clients. Both ACS servers are setup identical. The database replcation has been preformed.A series of 10 clients connects wirelessly and they are all  successful.  ACS server 1 is the primary and ACS server 2 is the backup.   We verified that the 10 users authenticated to the primary ACS. My time out to reauth is 30 minutes on the WiSM. 10 minutes into the test we took down the Primary server.  This should have had no impact on the clients. 5 minutes later the clients lost thier authentication and were dropped from the network. They were able to reconnect by shutting down thier wireless client and reconnecting. The authentications were seen on the Backup ACS server.on a test of falling back to the primary  the same thing happened again to the clients.

View 2 Replies View Related

Home Network :: Belkin F5D8635-4v1 - Access Multiple Servers From One Dynamic IP Address

Jan 23, 2012

I am working with MS Windows 2008 R2 and a Belkin F5D8635-4v1 router.

I have already set up a dynamic IP address which points to my router at home. In my home network I have multiple PC's that I would like to access from the internet. I would like to achieve this without needing to change my port forwarding rules on my router each time...

My thoughts are that I use a single dynamic IP address pointed to my router. My router then forwards to a server with some sort of software that can then forward to the correct PC based on the host name.

So I have 3 domains set up all pointing to the router's IP address:

dest1.domain.com -> 41.xxx.xxx.45
dest2.domain.com -> 41.xxx.xxx.45
dest3.domain.com -> 41.xxx.xxx.45

The router is not smart enough to redirect by host name, so it will just forward everything to 10.0.0.20 The server based at 10.0.0.20 must then have software to now redetermine the target based on the host name. The rules would be set up as follows:

dest1.domain.com -> 10.0.0.22
dest2.domain.com -> 10.0.0.24
dest3.domain.com -> 10.0.0.26

View 1 Replies View Related

Cisco Firewall :: ASA 8.4 Forwarding Port Range?

Oct 30, 2012

I need to open port range 554 - 558 to a DVR on the internal network. Also, I need to NAT one of my public IP's to the DVR. How is this accomplished in 8.4? I was able to do it in an older version ASA software.

View 3 Replies View Related

Cisco WAN :: Port Range Forwarding On 1811?

Mar 23, 2006

I’m having serious issues getting Tandberg H.323 working behind this router with NAT.
 
My setup is Cisco 1811 configured with Fas0 to pull DHCP (public address). This router is being used in a mobile medical clinic VAN so the setup needs to be seamless and transparent to the users. The idea with the DHCP is anywhere they go they could pull a DHCP address and then NAT behind that address. The van visits mostly small schools in the Texas Rio Grande Valley providing medical assistance and consulting to the local community. The router has an 8 port built in switch and all ports are sitting in default VLAN 1.
 
Basic stripped down config, only relevant commands listed…
 
ip dhcp excluded-address 10.0.0.1 10.0.0.4
 
ip dhcp pool VANnet
network 10.0.0.0 255.255.255.240
default-router 10.0.0.1
dns-server 10.0.0.1(code)

Now initially I can’t even get the call to connect with just using the ports above, which I should. Also knowing there are several issues with H.323 and NAT I went ahead and added all know ports Tandberg says they use…
 
80 HTTPd *TCP
443 HTTPs TCP
1719 H323/RAS UDP
1720 H323/Q931 *TCP
2326-2373 (2837)** H323/RTP UDP
5555-55xx (5587)** H323/H.245/Q.931 TCP
 
Basically I created static NAT entries for all the ports and the ranges above. For the ranges I had to add a line for every port.
 
This didn’t and hasn’t worked yet even with some additional tweaking… Finally the question… am I going about this all wrong? Is there an arrangement of commands that will even work? How can I accomplish the port forwarding setup on a Linksys/Netgear router on a real Cisco router?

View 9 Replies View Related

Cisco Firewall :: Port Forwarding A Range Of Ports (PIX 6.3)

Dec 5, 2012

I have a network with multiple servers behind a PIX with 6.3 on it. I have one public IP address, and I'm using NAT. I'm currently trying to port my Exchange server to a cloud host, and the vendor is requiring I open up a wide range of ports for MAPI, basically ports 1024 on. What would be the command to forward all of the trafic cominto/from that broad range? if I could simply route all trafic to and from their two IP addresses to my email server, that would accomplish the same end goal.

View 3 Replies View Related

Cisco Switching/Routing :: 881 To Do Range Port Forwarding

Jan 21, 2013

I have a Cisco 881 router in my office and I would like to do port forward for port 5060, and 10000 - 20000 to my PABX(192.168.1.61). After I did some research from internet, understand that we need to NAT by using following command to do port forward for port 5060. ip nat inside source static udp 192.168.1.61 5060 XXX.XXX.XXX.XXX(WAN IP) 5060 extendable However, now I'm facing an issue to perform port forward for a huge range of ports like 10000 to 20000.

View 9 Replies View Related

Cisco Infrastructure :: 1941 Opening Port Range For IP

Jul 1, 2011

I have a LAN with Cisco 1941 as the only router with NAT that connects it to the internet, with a single public IP. There are many gamer users, and they complain that Call of Duty Modern Warfare 2 sees our network as "strict NAT", while for full gaming experience it needs "open NAT". After a small research I have found out that CoD needs certain port ranges to be forwarded to LAN IPs. Well, I know how to forward a range of ports to a single IP, but how is it possible to forward a port range for all the IPs in the LAN?

View 1 Replies View Related

Cisco Application :: ACE10 Dynamic Port Range

Feb 3, 2013

the dynamic port range server load balancing supported for MS Exchange 2010

View 1 Replies View Related

Cisco Routers :: RV220W Forwarding Port Range?

Sep 4, 2012

How can one forward a range of ports?
 
Suppose I have defined the following service:
 
Service: TEST
Port type: UDP
Starting port: 5060
Ending port: 5070
 
and I want to forward it to a specific IP. Then, if I create a new port forwarding rule for this service it asks me to specify a single port number to be used internally as:
 
Action: Always Allow
Service: TEST
Source IP: Any
Destination IP: 10.0.0.100
Internal Port: ?
 
I want to forward all ports from 5060 to 5070 to the internal range 5060 to 5070.

View 4 Replies View Related

Cisco Firewall :: How To Configure NAT Port Range On ASA 5510

May 22, 2012

i have a cisco asa 5510 and would like to add a NAT rule for a range of ports like 50000-59999

View 15 Replies View Related

Cisco Firewall :: Opening Port Range ASA5505

Mar 26, 2013

I just bought a Cisco ASA5505. I'm trying to opening a port range through CLI, but it doesn't seem to be working.
 
Background:I have an FTP Server running behind the firewall and need to allow port ranges 30000-30100 for data connections.  I have been using FTP through the command prompt and its working. However, I cannot use it through the FileZilla client as it fails to query the directories.  I have the ASA forwarding to port 1125 from 21 in passive mode.
  
Access-List:
access-list Outside_Access_In line 3 extended permit tcp any any eq ftp-data (hitcnt=0) 0xfa8ed43d
access-list Outside_Access_In line 4 extended permit tcp any any eq ftp (hitcnt=17)

[Code].....

View 14 Replies View Related

Cisco Routers :: RV 120W - Port Forwarding Range

Sep 12, 2011

I am not a tech guy but have to take care of some basic IT stuff. I had Ether fast cable/DSL router and it got changed with RV 120W router. there were comment that internet is now working slowly - what could be the reason for this?
 
I copied most of settings. First big technical problem was with phone. It stopped working - call could get through but when answered there was no sound. We use linksys modem for VoIP. I called operator and was told to disable sip alg. I did that and service improved a little. When answering a call sound could get through but would stop for few moments and then continue. Operator told me to forward port 16384 to 16482 to VoIP modem IP. But I can only set forwarding for one port at the time in "Port forwarding" settings. Is there a way to forward to port range?

View 4 Replies View Related

Cisco Firewall :: 5505 - NAT Port Range For Sip Server

Feb 7, 2013

: Saved
: Written by enable_15 at 03:51:29.049 UTC Mon Feb 4 2013
ASA Version 8.4(4)1
host name cisco asa
enable password xxxxx encrypted
password xxxxx encrypted
names
interface Ethernet0/0
switch port access v lan 100
interface Ethernet0/1
interface Ethernet0/2
[code]...

View 2 Replies View Related

Servers :: Disable Port 80?

Jul 9, 2011

I want to use vertrigo localhost but due to port 80 enable it is not runing so how can i disable this port.

View 2 Replies View Related

Cisco Firewall :: Port Range Forwarding On Post 8.3 ASA5505

Jun 1, 2011

I have an ASA 5505 on a job. It is a smaller business that would have done better with an RV082, but they have what they have. It is running firmware 8.4. The client needed ports forwarded for their FTP server. The port range in this config is tcp 43333-43339. The FTP server ip is 192.168.1.2. [Code] ......

View 8 Replies View Related

Cisco Firewall :: 1811 NAT Port Range From Loop Back

Feb 19, 2013

I need to NAT a port range spanning from TCP and UDP 50,000 to 59,999 from inside global address 58.96.x.x on loopback2 to an inside local address of 192.168.5.5.Currently all the existing NAT translations are 1-to-1 that map inside global addresses on a wide span of Loopbacks and a Dialer Interface to inside local addresses on few subnets which are fine.I'm using an 1811 with an ADVIPSERVICESK9-M image, version 12.4(6)TS

View 1 Replies View Related

Cisco Switching/Routing :: Router 881 Range Port Forwarding

Apr 3, 2012

I have a Cisco 881 router in my office and I would like to do port forward for port 5060, and 10000 - 20000 to my PABX(192.168.1.61).After I did some research from internet, understand that we need to NAT by using following command to do port forward for port 5060.
 
ip nat inside source static udp 192.168.1.61 5060 XXX.XXX.XXX.XXX(WAN IP) 5060 extendable.However, now I'm facing an issue to perform port forward for a huge range of ports like 10000 to 20000.It is impossible to ask me add one by one?

View 3 Replies View Related

Cisco Routers :: SA 500 - Ability To Send Syslog Events To Multiple Syslog Servers

Jul 7, 2012

Add the ability to send syslog events to multiple syslog servers in the SA500 Series routers.  I know the functionality is currently in the RV220W because we utilized it.  It would be great if you could configure the syslog servers by event type as well.  For example, being able to send the kernel events to syslog server A, and all other events to syslog server B.

View 0 Replies View Related

Protocols / Routing :: SIP Trunk Port Range (VOIP)

Aug 14, 2012

I've recently set up a PC-based IP PBX in our small business which uses a SIP Trunk for up to 3 simultaneous voice calls. Ports needed to operate include 5060 (SIP-UDP) and then a huge range of high-number UDP ports which I believe is for the 'media' or audio. Let's call the range UDP 49,152 to 64,512. I only know a little about the SIP protocol but my understanding is that each call will randomly use a few ports from this range across which will pass audio, Is there a need to have such a wide range of ports open? If my SIP trunk is only capable of 3 simultaneous calls then it seems only 9 or so of those open ports could get used at once. Could I not just open, say a range of 100 ports and be fine, thereby reducing the security risk?

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved