Quick help-- to enable port 80...

[joeblough]

I have a cisco 1600 router on the internet and an NT server on the intranet. The box now accepts SNMP from the internet. I need Internet users to pass through the router for access to the NT IIS box. I am setting up MS Exchange servers' (5.5) Outlook Web Access.

I dont know diddly about routers and am having a time of it finding exactly how to do it. I can get to the:

routername>

--prompt, but what do I do from there?

Thank you in advance!

Blake Net Admin.
DBlakeAdams@yahoo.com

 

[jgercken]

Can you post the router's config so we can see what's up. Change the addresses & passwords first (duh).

routername> enable
password? XXXXX
routername# sh run


----------------------------------------
Wassabi Pop Tarts! Write Kellogs today!

 

[ChrisAC]

If you don't know anything about routers at all then I suggest that you visit

http://www.cisco.com

for some sample configs.

Chris.
************************
Chris Andrew, CCNA
chrisac@gmx.co.uk
************************

 

[joeblough]

OK here it is:

version 12.0
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname xxxx
!
enable secret x xxxxxxxxxxxxxxxxxxxxxxx
enable password x xxxxxxxxxxxxxxxxxxxx
ip subnet-zero
no ip domain-lookup
!
!
!
interface Ethernet0
ip address x.x.x.x 255.255.255.0
no ip directed-broadcast
ip nat inside
!
interface Ethernet1
ip address x.x.x.x 255.255.255.0
ip access-group 100 in
no ip directed-broadcast
ip nat outside
!
interface Serial0
no ip address
no ip directed-broadcast
shutdown
!
ip nat pool routername x.x.x.x x.x.x.x netmask 255.255.255.0
ip nat inside source list 1 pool routername overload
ip nat inside source static x.x.x.x x.x.x.xip classless
ip route 0.0.0.0 0.0.0.0 x.x.x.x
access-list 1 deny x.x.x.x
access-list 1 permit x.x.x.x 0.0.0.255
access-list 100 deny tcp any range 135 139 any
access-list 100 deny tcp any any range 135 139
access-list 100 deny udp any range 135 netbios-ss any
access-list 100 deny udp any any range 135 netbios-ss
access-list 100 deny ip x.x.x.x 0.0.255.255 any
access-list 100 deny ip 172.0.0.0 0.31.255.255 any
access-list 100 deny ip 10.0.0.0 0.255.255.255 any
access-list 100 deny ip 224.0.0.0 31.255.255.255 any
access-list 100 deny ip host x.x.x.x any
access-list 100 deny ip host x.x.x.x any
access-list 100 deny ip host x.x.x.x any
access-list 100 permit tcp any host x.x.x.x established
access-list 100 permit udp any host x.x.x.x
access-list 100 deny ip any host x.x.x.x
access-list 100 permit udp any eq domain host x.x.x.x
access-list 100 permit udp any host x.x.x.x eq domain
access-list 100 permit tcp any host x.x.x.x eq smtp
access-list 100 permit tcp any eq smtp host x.x.x.x
access-list 100 permit tcp any host x.x.x.x eq pop3
access-list 100 permit tcp any eq pop3 host x.x.x.x
access-list 100 permit tcp any host x.x.x.x range 5900 5905
access-list 100 deny ip any host x.x.x.x
access-list 100 permit icmp any host x.x.x.x echo-reply
access-list 100 permit icmp any host x.x.x.x time-exceeded
access-list 100 deny icmp any host x.x.x.x
access-list 100 permit icmp any host x.x.xx.x
access-list 100 permit icmp any host x.x.x.x
access-list 100 deny ip any host x.x.x.x
access-list 100 deny ip any any
!
line con 0
password x xxxxxxxxxxxxxxxxxxx
login
transport input none
line vty 0 4
password x xxxxxxxxxxxxxxxxxxx
login Net Admin.
DBlakeAdams@yahoo.com

 

[joeblough]

do I add lines such as:

access-list 100 permit tcp any host x.x.x.x eq html
access-list 100 permit tcp any eq html host x.x.x.x

?
Net Admin.
DBlakeAdams@yahoo.com

 

[ChrisAC]

html???? I think that you mean http. ************************
Chris Andrew, CCNA
chrisac@gmx.co.uk
************************

 

[joeblough]

duh- right. sorry chrisac.

SO, in order to have the external port/address pass through to the internal NT box address, what lines would I need to add/modify?

Thank you again. Net Admin.
DBlakeAdams@yahoo.com