From: Jason T. Rohm (jtrohm@xxxxxxxxxxx)
Date: Mon Sep 25 2000 - 02:42:29 GMT-3
This is just a spit-wad answer (its 12:30am, no flames please)...
But, couldn't you NAT it both ways (inside pub/private and outside
pub/private) so that the internal UNIX servers are presented with a unique
private address for the client which has a route anounced by the NAT router?
That way you are guaranteed a symetrical route w/o screwing with any of the
other routers.
-Jason
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Mike Chase
Sent: Sunday, September 24, 2000 11:28 PM
To: Ccielab@Groupstudy. Com
Subject: Proxy ?
I am wondering if anyone knows how to do the following on a Cisco router.
I have some Unix users who want to use SSH to get into the corporate LAN via
the
Internet.
The SSH servers however will sit in various spots in the world on our
private
10.x network.
What I would like to do is put a Cisco router on a T1 facing the Internet
(S0/0)
and have it proxy several port #'s on it's IP address on S0/0 (the Internet
T1),
each of which will be mapped to represent a given SSH server on the internal
LAN
(E0/0).
I am thinking of Proxy and not NAT because if I use NAT, it will create
asymetric routing (thus won't work) as this is not the usual path to the
Internet which is served by a T3 out another path in the LAN.
Thanks/
Mike L. Chase
Sr. Network Architect
ISG: Information Services Group
Broadcom Corporation World Headquarters, BLDG A-1050
16215 Alton Parkway, Irvine, California 92618-3616
OFFICE:949-585-6057|CELL:949-283-4254|FAX:949-585-6227
"Courage is not the absence of fear, but rather the judgment
that something else is more important than fear."
-- Ambrose Redmoon
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:01 GMT-3