联通光纤使用PA做网关的问题
本帖最后由 qqdemon 于 2015-1-16 12:05 编辑您好,办理联通光纤后,联通给了我1个互联的IP地址61.148.57.6及网关61.148.57.5,还有一段用于与联通的互联,也就是作为专线互联地址111.205.127.64-111.205.127.95。我以前使用的是中兴路由器,路由外网口地址为61.148.57.6,网关61.148.57.5,内部可以正常上网,并且配置ip nat inside source static 192.168.17.29 111.205.127.69 这条命令后,企业外部可以直接使用111.205.127.69访问我内网的17.29这台主机,现在想用pa做网关,无论怎么配置都无法实现这个效果,请技术人员帮忙。
现在的PA配置如下,按现在的配置,17.29这台主机上网时所使用的地址是111.205.127.69,但从企业外部无法访问17.29这台主机
下面是我原来路由器的配置
interface gei_0/1
ip address 61.148.57.6 255.255.255.252
out_index 4
hybrid-attribute copper
negotiation auto
ip nat outside
!
interface gei_0/2
ip address 192.168.168.1 255.255.255.252
out_index 5
hybrid-attribute copper
negotiation auto
ip nat inside
ip nat start
ip nat inside source list 1 interface gei_0/1
ip nat inside source static tcp 192.168.12.242 8082 61.148.57.6 8082
ip nat inside source static 192.168.17.29 111.205.127.69
ip route 0.0.0.0 0.0.0.0 61.148.57.5
ip route 192.168.12.0 255.255.255.0 192.168.168.2
ip route 192.168.13.0 255.255.255.0 192.168.168.2
ip route 192.168.14.0 255.255.255.0 192.168.168.2
ip route 192.168.15.0 255.255.255.0 192.168.168.2
ip route 192.168.16.0 255.255.255.0 192.168.168.2
ip route 192.168.17.0 255.255.255.0 192.168.168.2
!
acl standard number 1
rule 1 permit 192.168.12.0 0.0.0.255
rule 2 permit 192.168.13.0 0.0.0.255
rule 3 permit 192.168.14.0 0.0.0.255
rule 4 permit 192.168.15.0 0.0.0.255
rule 5 permit 192.168.16.0 0.0.0.255
rule 6 permit 192.168.17.0 0.0.0.255
rule 10 deny any
!
你试试修改两个地方:
1)应用路由--策略路由--序号3的策略,下一跳改成WAN61这条线路
2)应用路由--端口映射,把WAN端口改成1-65535,映射端口改为0
页:
[1]