msr20路由器端口映射完,局域网可以访问网站,广域网无法访问
# version 5.20, Release 2513P02, Standard # sysname msr20-20 # super password level 3 cipher $c$3$ecbDExt4twOIFnKvblt/ZPBYeVN3cB6CKA== # l2tp enable # domain default enable system # telnet server enable # dar p2p signature-file cfa0:/p2p_default.mtd # port-security enable # ip http port 8080 # web idle-timeout 60 # password-recovery enable # acl number 3000 rule 10 permit ip source 20.13.2.0 0.0.0.255 destination 10.10.10.0 0.0.0.255 acl number 3001 rule 10 deny ip source 20.13.2.0 0.0.0.255 destination 10.10.10.0 0.0.0.255 rule 11 permit ip source 20.13.2.30 0 rule 12 permit ip source 20.13.2.31 0 rule 13 permit ip source 20.13.2.32 0 rule 14 permit ip source 20.13.2.33 0 rule 15 permit ip source 20.13.2.34 0 rule 16 permit ip source 20.13.2.35 0 rule 17 permit ip source 20.13.2.36 0 rule 18 permit ip source 20.13.2.37 0 rule 19 permit ip source 20.13.2.38 0 rule 20 permit ip source 20.13.2.39 0 rule 21 permit ip source 20.13.2.40 0 rule 22 permit ip source 20.13.2.253 0 rule 23 permit ip source 20.13.2.254 0 rule 25 permit ip source 20.13.2.21 0 # vlan 1 # domain system access-limit disable state active idle-cut disable self-service-url disable ip pool 1 192.168.8.2 192.168.8.100 # ike proposal 10 authentication-algorithm md5 # ike peer tobj pre-shared-key cipher $c$3$GMJIF9YRTcFmW+SZLpj5p1cqs6nDlyA33hS71A== remote-address 219.141.207.185 local-address 222.223.168.74 # ipsec transform-set tobj encapsulation-mode tunnel transform esp esp authentication-algorithm md5 esp encryption-algorithm des # ipsec policy tobj 10 isakmp security acl 3000 pfs dh-group1 ike-peer tobj transform-set tobj # user-group system group-attribute allow-guest # local-user admin local-user anhe password cipher $c$3$TJho90UHViGh9PMESDjkHH5DsBAGIUri9Q== authorization-attribute level 3 service-type telnet service-type web local-user ciming password cipher $c$3$N6dgDBhURxLH9IctcKJXMhRco5XnW6HrVc4qdw== authorization-attribute level 3 service-type ssh telnet local-user cmjm password cipher $c$3$7kCY7x89riJiOpOPsHtmMYv36OUG+dZ8cGYoqlWt+Q== authorization-attribute level 3 service-type ssh local-user cmjmzjk password cipher $c$3$na1jpBMTPies1gLNxi4Mim5nqsvNn6hWsVEx service-type ppp # cwmp undo cwmp enable # l2tp-group 1 undo tunnel authentication allow l2tp virtual-template 10 remote cmjm # interface Aux0 async mode flow link-protocol ppp # interface Cellular0/0 async mode protocol link-protocol ppp # interface Ethernet0/0 port link-mode route description connect_to_neiwang ip address 20.13.2.1 255.255.255.0 # interface Ethernet0/1 port link-mode route description connect_to_waiwang nat outbound 3001 nat server 1 protocol tcp global current-interface www inside 20.13.2.231 www ip address 222.223.168.74 255.255.255.224 ipsec policy tobj # interface Virtual-Template10 ppp authentication-mode chap remote address pool 1 ip address 192.168.8.1 255.255.255.0 # interface NULL0 # interface Vlan-interface1 # ip route-static 0.0.0.0 0.0.0.0 222.223.168.65 # snmp-agent snmp-agent local-engineid 800063A2035CDD70C333CC snmp-agent community read cmzy snmp-agent sys-info version all undo snmp-agent trap enable voice dial # ssh server enable ssh user admin service-type stelnet authentication-type password # load xml-configuration # load tr069-configuration # user-interface con 0 user-interface tty 13 user-interface aux 0 user-interface vty 0 4 authentication-mode scheme # return
(0)
最佳答案
这个配置太乱了,首先你要保证内网可以访问服务器,然后服务器可以上外网,在外网端口不被封闭的情况下做映射,参考手册案例
http://www.h3c.com/cn/d_201808/1106878_30005_0.htm#_Toc522898389
(0)
您好,局域网可以访问服务器,服务器可以上外网,宽带80端口电信给打开了,映射也做了,您方便远程给看下吗,谢谢
这个不太方便,不好意思
您能给看下我这个外网ip有打开80端口吗,222.223.168.74。路由器web登录我改为了ip http port 8080.谢谢
telnet 这个地址的80和 8080端口通的
局域网可以通过ip访问,但域名访问不了内外网映射的是80端口
外网能用外网地址访问么
您说直接外网访问222.223.168.74。这样可以
内网通过公网地址访问内部服务器的话,需要把外网口做的端口映射,在内网口再配置一遍,同时内网口配置一下nat outbound
您好,可以发下配置命令吗
就在内网口配置nat server那条命令,还有nat out
现在外网通过外网固定ip222.223.168.74。可以正常访问,但通过二级域名不能访问
外网通过ip可以访问,外网无法通过域名访问,需要找下域名的问题,路由器只能做映射
好的,谢谢,很是感谢,谢谢谢谢
不客气
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明
不客气