Hello,
My numbers are obviously hypothetical as I am in a design phase.
I have a cisco 2821 router with one serial WIC - 10.10.10.1. The ISP1 has assigned us a public address space of 192.168.1.0
The router has a FE0/0 WIC 11.11.11.1 being used for connecting to a second ISP carrier. The ISP2 has assigned us a public address space of 192.168.2.0
The router on-board GE0/0 interface ip will be on a 192.168.5.0 subnet and assigned an IP address of 192.168.5.1
Public servers on our DMZ will have a PIX firewall translated public IP from the 192.168.5.0 subnet. For example a web server will be 192.168.5.50
The DNS for the DMZ server 192.168.5.50 will be registered on the internet as
We will use dynadns to handle DNS resolution for the 192.168.1.0 ISP1 and 192.168.2.0 ISP2 address spaces - For example will use public address 192.168.2.50 and 192.168.1.50
I would like to add NAT rules on the router so that an outside Internet user using either the 192.168.1.50 or 192.168.2.50 addresses will translate to the 192.168.5.50 address of the web server.
After reading some documentation my first thought was to add the following to the router config
ip nat outside source static network 192.168.1.0 192.168.5.0
ip nat outside source static network 192.168.2.0 192.168.5.0
Then add the "ip nat outside" line to the serial and fe interface of the router
Please let me know if I am on the right track. Your assistance would be greatly appreciated
My numbers are obviously hypothetical as I am in a design phase.
I have a cisco 2821 router with one serial WIC - 10.10.10.1. The ISP1 has assigned us a public address space of 192.168.1.0
The router has a FE0/0 WIC 11.11.11.1 being used for connecting to a second ISP carrier. The ISP2 has assigned us a public address space of 192.168.2.0
The router on-board GE0/0 interface ip will be on a 192.168.5.0 subnet and assigned an IP address of 192.168.5.1
Public servers on our DMZ will have a PIX firewall translated public IP from the 192.168.5.0 subnet. For example a web server will be 192.168.5.50
The DNS for the DMZ server 192.168.5.50 will be registered on the internet as
We will use dynadns to handle DNS resolution for the 192.168.1.0 ISP1 and 192.168.2.0 ISP2 address spaces - For example will use public address 192.168.2.50 and 192.168.1.50
I would like to add NAT rules on the router so that an outside Internet user using either the 192.168.1.50 or 192.168.2.50 addresses will translate to the 192.168.5.50 address of the web server.
After reading some documentation my first thought was to add the following to the router config
ip nat outside source static network 192.168.1.0 192.168.5.0
ip nat outside source static network 192.168.2.0 192.168.5.0
Then add the "ip nat outside" line to the serial and fe interface of the router
Please let me know if I am on the right track. Your assistance would be greatly appreciated
