NAT and Cisco 1603

I believe your friend is correct. I have tried a similar config in the past but the commands got thrown back to me as invalid. I think you may have better luck with an 800 series router because they are closer to a firewall and there is a model that can do ISDN. It should work fine but remember it is for home/SOHO so its kinds limited. Also see if you can buy/acquire a firewall image.

Reply to
snizfast
Loading thread data ...

Hi to al... I need a little help with a Cisco 1603. I've already done a working config, it connect, the pc's behind it surf on web, but the port mapping isn't working :-( This is the config:

! ! Last configuration change at 12:08:23 Italia Fri Jul 15 2005 ! NVRAM config last updated at 11:57:36 Italia Fri Jul 15 2005 ! version 12.2 service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Cisco1603 ! enable password 7 xxxxxxxxxxxxxx ! username xxxxxxxxx password 7 xxxxxxxxxxxxxx clock timezone Italia 1 ip subnet-zero ip name-server 194.185.88.12 ip name-server 213.92.5.59 ! isdn switch-type basic-net3 ! ! ! interface Ethernet0 description connected to EthernetLAN ip address 192.168.200.100 255.255.255.0 ip nat inside ! interface BRI0 description connected to Internet no ip address encapsulation ppp shutdown dialer rotary-group 1 isdn switch-type basic-net3 no cdp enable ! interface Dialer1 description connected to Internet ip address negotiated ip nat outside encapsulation ppp no ip split-horizon keepalive 60 dialer in-band dialer idle-timeout 2141483 dialer string xxxxxxxxxx dialer hold-queue 10 dialer-group 1 no cdp enable ppp authentication chap pap callin ppp chap hostname xxxxxxxx ppp chap password 7 xxxxxxxxxxxxxxxxxx ppp pap sent-username xxxxxxxx password 7 xxxxxxxxxxxxxxxxxx ! ip nat inside source list 101 interface Dialer1 overload ip nat inside source static tcp 192.168.200.1 80 interface Dialer1 80 ip classless ip route 0.0.0.0 0.0.0.0 Dialer1 no ip http server ! access-list 101 permit ip 192.168.200.0 0.0.0.255 any dialer-list 1 protocol ip permit ! line con 0 exec-timeout 0 0 password 7 ************** login line vty 0 4 password 7 ************** login ! ntp clock-period 17042429 ntp server 193.204.114.232 ntp server 193.204.114.233 end

From internet i can ping the router, but i not see the webserver :( Someone have also some hinits to elevate the security of this device? The IOS not have the firewall feature :-( Thanks to all!!!!

Reply to
Enrico

So, i can't use servers behind this router???? I don't belive this :-| The commands are all valid!

Thanks for the attention...

ha scritto nel messaggio news: snipped-for-privacy@g43g2000cwa.googlegroups.com...

Reply to
Masterx81

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.