我已经安装打开 VPN 访问服务器在 ESXI 服务器上。
为了从外部访问它,我使用以下命令向 CISCO 路由器添加了端口转发。
#conf t
#ip nat inside source static tcp 10.201.102.163 443 <MY_EXTERNAL_IP> 443
#ip nat inside source static udp 10.201.102.163 443 <MY_EXTERNAL_IP> 443
执行这些命令后没有出现任何错误或任何消息。
但是当我导航到 时https://<MY_EXTERNAL_IP>
,我无法访问服务器?
编辑
的结果 sh ip access-list
## are intentional
Extended IP access list 100
10 permit ip 10.##.102.0 0.0.0.255 any
20 permit ip 10.##.103.0 0.0.0.255 any
Extended IP access list 101
10 deny ip 10.##.103.0 0.0.0.255 10.##.102.0 0.0.0.255 (1495005761 matches)
20 permit ip 10.##.103.0 0.0.0.255 any (50722431 matches)
Extended IP access list 102
10 permit ip 10.1.45.0 0.0.0.255 any (1015320 matches)
20 permit ip 10.1.40.0 0.0.0.255 any (41479 matches)
Extended IP access list 110
10 permit ip 10.##.103.0 0.0.0.255 10.##.102.0 0.0.0.255 (1498725218 matches)
Extended IP access list 199
10 permit tcp any host 1##.9.54.227 range 49000 49500 (12909 matches)
答案1
您是否已为相关接口分配内部和外部名称?
Router# int G0/0
Router# ip address <private-ip> <mask>
Router# ip nat inside
和
Router# int G0/1
Router# ip address <public ip> <mask>
Router# ip nat outside