INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

I cannot get my server to go outside beyond firewall...please help...

I cannot get my server to go outside beyond firewall...please help...

I cannot get my server to go outside beyond firewall...please help...

(OP)

Quote:


#
!
!
ip firewall
ip firewall stealth
no ip firewall alg msn
no ip firewall alg mszone
no ip firewall alg h323
no ip firewall alg sip
!
!
!
!
!
!
!
!
no dot11ap access-point-control
!
!       
!
!
!
ip dhcp-server database local
ip dhcp-server excluded-address 192.168.2.1 192.168.2.149
!
ip dhcp-server pool "192.168.2.x"
  network 192.168.2.0 255.255.255.0
  domain-name "*********"
  dns-server 198.*.*.10 198.*.*.11
  default-router 192.168.2.1
  timezone-offset -6:00
!
ip dhcp-server pool "192.168.20.x"
  network 192.168.20.0 255.255.255.0
  default-router 192.168.20.1
!
!
!
!
!
!
!       
!
!
vlan 1
  name "Default"
!
vlan 20
  name "VoIP"
!
vlan 100
  name "WAN"
!
!
interface switchport 0/1
  description WAN Uplink
  power inline never
  no shutdown
  switchport access vlan 100
!
interface switchport 0/2
  no shutdown
!
interface switchport 0/3
  no shutdown
!
interface switchport 0/4
  no shutdown
!
interface switchport 0/5
  no shutdown
!
interface switchport 0/6
  no shutdown
!
interface switchport 0/7
  no shutdown
!
interface switchport 0/8
  no shutdown
!
interface switchport 0/9
  no shutdown
!
interface switchport 0/10
  no shutdown
!
interface switchport 0/11
  no shutdown
!
interface switchport 0/12
  no shutdown
!
interface switchport 0/13
  no shutdown
!
interface switchport 0/14
  no shutdown
!
interface switchport 0/15
  no shutdown
!
interface switchport 0/16
  no shutdown
!
interface switchport 0/17
  no shutdown
!
interface switchport 0/18
  no shutdown
!       
interface switchport 0/19
  no shutdown
!
interface switchport 0/20
  no shutdown
!
interface switchport 0/21
  no shutdown
!
interface switchport 0/22
  no shutdown
!
interface switchport 0/23
  no shutdown
!
interface switchport 0/24
  no shutdown
!
!
interface gigabit-switchport 0/1
  no shutdown
!
interface gigabit-switchport 0/2
  no shutdown
!
!
!
interface vlan 1
  ip address  192.168.2.1  255.255.255.0
  ip access-policy Private
  no ip route-cache express
  no shutdown
!
interface vlan 20
  description VoIP Phones
  ip address  192.168.20.1  255.255.255.0
  media-gateway ip primary
  no ip route-cache express
  no shutdown
!
interface vlan 100
  description WAN
  ip address  198.*.*.41  255.255.255.0
  ip access-policy Public
  media-gateway ip primary
  no ip route-cache express
  no shutdown
!
!
!
!
!
!
!
ip access-list standard wizard-ics
  remark Internet Connection Sharing
  permit any
!
!
ip access-list extended self
  remark Traffic to NetVanta
  permit ip any  any     log
!
ip access-list extended web-acl-3
  remark Admin Access
  permit udp any  any eq snmp    log
  permit tcp any  any eq 8443   log
  permit icmp any  any  echo   log
!       
ip access-list extended web-acl-4
  remark Server
  permit tcp any  any eq ftp   log
  permit tcp any  any eq www   log
  permit tcp any  any eq https   log
  permit tcp any  any range 989 990   log
!
ip access-list extended web-acl-5
  remark Allow ALL 5938
  permit tcp any  any eq 5938  
!
!
!
ip policy-class Private
  allow list self self
  nat source list wizard-ics interface vlan 100 overload
  nat destination list web-acl-4 address 192.168.2.200
!
ip policy-class Public
  allow list web-acl-3 self
  nat destination list web-acl-4 address 192.168.2.200
  allow list web-acl-5
  allow list web-acl-4
!
!
ip route 0.0.0.0 0.0.0.0 198.*.*.1
!
no tftp server
no tftp server overwrite
no ip http server
ip http secure-server 8443
ip http language English
ip snmp agent
no ip ftp server
ip ftp server default-filesystem flash
no ip scp server
no ip sntp server
!
!
!
!
!
!
!
!
!
ip sip udp 5060
ip sip tcp 5060
!
!
!
!
!
!
!
!
!
!
!
!
!
!
ip rtp quality-monitoring
ip rtp quality-monitoring sip
!
!
!
!
!
!
!
end

This is the config I have currently... could anyone throw some suggestions my way to get

192.168.2.200 out to port 80 so i can have a webserver? PLEASE. i'm like neck deep in the manual but it hasn't helped with this kind of config...

RE: I cannot get my server to go outside beyond firewall...please help...

You did not mention what the device is?

Are you able to ping anything like switchports or interfaces?

You might want to walk thru it to see if you are missing a port assignment, or a route parameter that would block the traffic. Even the order of sequence could cause the problem. If it worked at all, you might backup to the point where it worked and go from there.

....JIM....
 

RE: I cannot get my server to go outside beyond firewall...please help...

(OP)
Adtran Netvanta 1335 POE

and ping switchports and interfaces... hmmm if i can't do that what should i do..

oh and thank you so much for helping..
your a blessing...
thank you

RE: I cannot get my server to go outside beyond firewall...please help...

Does the device function at all? Please explain just what you are trying to do with the 1335. The configuration doesn't really tell me much about what you are doing.

Do you know how to PING?

....JIM....
 

RE: I cannot get my server to go outside beyond firewall...please help...

(OP)
i need 192.168.2.200 and/or switchport 0/3 to get out on vlan 100 with port 8080 which goes out to the world..  ? and pass the firewall..
thank you

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Resources

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close