EA4500: Internal IP address to specific port on router

Hi all,
I have a EA4500 router and want to "connect" a device of my internal network to a specific lan port on the router, so all traffic of this device is handled via the same lan port.
F.e: I have a device with the inernal IP 192.168.1.25 connected via a switch in my network and I want to connect this IP device with the LAN port 2 on the router, so all in- and outcoming traffic goes via LAN port 2 on the router.
Is this possible?
Kind regards,
Patrick

Hi, 
As long as your device is on the same LAN segment with your router, yes - this is possible.
But if your router was configured on a different LAN segment and the internal device (with internal IP 192.168.1.25) can't be set to DHCP, you can just simply change the router's Local IP address back to 192.168.1.1.  Just simply access your Linksys Smart Wifi page then go to Connectivity -> Local Network Tab -> Click on Edit then apply the settings below (IP address and Subnet Mask).
Hope this helps.
If everyone needs to believe in something, I believe I'll have another beer..

Similar Messages

  • Tcp_intranet channel to accept only for a specific internal IP address

    I am currently using SunOne Messaging Server v5.2:
    I would like to configure our MTA to only deliver emails to their proper mailstore if the emails are from 2 specific internal IP addresses. If emails that originated from the intranet are not from the above 2 IP addresses then I would like to re-route the emails to a particular MTA(port 25) for processing. Can this be done? And if so, what changes do I need to make to the imta.cnf file/mappings file?
    The tcp_local channel for outgoing emails should remain the same. My guess is that I have to modify the tcp_intranet channel to only accept from specific IPaddresses, Otherwise pass the emails to another channel or MTA for processing.
    Question: Can a user spoof an Email with an improper IP address. And if so, do I have to turn on reverse lookup to stop this from happening Or is reverse lookup on by default? Where is the reverse lookup setting? In the imta.cnf file?

    by default, we do examine the ip address of a mail sending partner. this is hard to spoof, and it's not based on "from" attribute.
    However, I'm not at all sure that what you're asking for is truly something achieveable by any normal means, nor if it's truly useful ..
    Perhaps you could create another channel for your specific ip addresses, and that would work. . .

  • SRW2024 - Forcing clients to use a specific IP address (based on port)

    With the SRW2024 managed switch, is it possible to force a client computer connected to a port to use a specific IP address (for example 192.168.1.30) and if the client tries to configure any other address which is not 192.168.1.30, the traffic is dropped and they essentially cannot access any LAN or internet resources? 
    Basically what I would like to do is associate an IP address with every port on the switch.  It sounds like this would be possible using the IP based access control feature, however I wanted to confirm. 
    Thank You
    Message Edited by RedWarrior on 12-05-2008 11:49 AM

    Well, I have contacted three different stores asking which hardware version they have in stock, (even providing instructions on how they can check)... Two of the three stores said they didn’t know what I was talking about and couldn’t check it for me, and the third one actually told me to contact Linksys and ask them... as if Linksys is supposed to know which hardware version their store carries!
    So I guess I will have to ask once more if anyone here knows how long hardware version 1.2 (for srw2024) has been out?

  • SG300 - ip address restricted to specific port??

    I have just set up an SG300 with protected ports so that different ports can not see the traffic on other ports. Now I am being asked to restrict specific ports to using only specific ip addresses. Is this possible with this switch?
    Each port will need to allow several (5-6) addresses.
    Thanks,
    TonyT

    ACL might work. Here are more details:
    We provide off-site mirrored storage for about a dozen customers. Each one provides their own firewall and vpn equiptment. Each customer has use of one protected port on the SG300 connected to their equiptment.
    We have a class-C IP range and we tell each customer what ip addresses they can use. For example, Joe can use .8-.15, Bob can use .16-.23, etc.
    We want to protect Joe should Bob fat-finger an address and ends up using .9 (intending .19)  while Joe is already using .9. We want only Bob to get errors and not Joe.
    Can it be done on a SG300?
    Tx,
    TonyT

  • Open IP to on specific port

    Hi!
    I have one internal IP and two external IP adresses. I want to use one adress for allowing mail to my server and one address for sending mails to mobile phones.
    I am not sure about how the NAT should look like. The ACL is no problem since I have two public adresses.
    How do i NAT specific ports for specific adresses? 
    10.1.1.2 should be NATted to 15.15.15.15 port 34
    10.1.1.2 should be NATted to 15.15.15.16 port 443
    /Lajja

    Hello,
    If you are running version 8.3 or above, you can apply the following commands:
    object network obj-10.1.1.2.34
    host 10.1.1.2
    nat (Inside,Outside) static 15.15.15.15 service tcp 34 34 nds:
    object network  obj.10.1.1.2.443
    host 10.1.1.2
    nat (Inside,Outside) static 15.15.15.16 service tcp 443 443
    If you are running version 8.2 or less, you will need to apply the following commands:
    static (Inside,Outside) tcp 15.15.15.15 34 10.1.1.2 34
    static (Inside,Outside) tcp 15.15.15.16 443 10.1.1.2 443
    Let me know how it goes.

  • I can access exchange from internal ip address address but not external

    Hi there, been trying to set up my iphone to collect my email from my exchange server 2003 sp 2 and have been having huge problems.
    My IT guys we use have done everything they can so far and we tried setting up the email by connecting through my wireless network and on my intenal ip address to by pass my westell router and it works.
    Now as soon as we try this outside and turn off the wi-fi and change ip adress to external, basically my OWA web address the verification fails.
    We use an actual number like 000.00.00.000 rather than this webmail.mycompany.com etc I have read about. Sorry not very good at this sort of thing so sorry if I sound like a novice.
    Any help appreciated.

    In order to connect to an Exchange server from internal and external, you must connect via a URL and not a specific IP address.
    The reason for this is that internal IP addresses (10.10.x.x, 192.168.x.x) are different than external IP addresses, therefore you will not be able to connect externally as you reported.
    If you connect to Exchange using a URL (example: http://mail.domain.com, the URL is mapped to both the internal IP and external IP - and thus the iPhone will work everywhere. Internal mapping is done in the server's DNS records. External mapping is done by contacting your internet provider and adding an A record. (You will also need a firewall mapping from external to internal with port 80 open for incoming traffic.)
    When you set it up as above, it works like a champ on Edge/3G and WiFi whether your in the office or outside.

  • WRT54G: How do I limit access to specific ports, only to local IP's

    Using a WRT54G with Windows XP, and I've setup a web server that I'm still testing. Until I understand the security better, I want to limit access from outside IP's to the port that it's running on, but NOT limit access from the outside to services running on other ports. Is there a way to block a range of IP addresses (or conversely, only permit access for a limited range of IP addresses) to a specific port? So for example (assuming server's on Port 99, and IP address to the outside world is 99.99.99.99: Port 99: Blocked IP Range: 0.0.0.0-99.99.99.98, and 99.99.99.100-255.255.255.255 - OR Port 99: Allowed IP Range: 99.99.99.99 Alternatively, I would be interested to permit access to the web server port, only for certain MAC addresses. Is this pretty secure, and if so, how can this be done? I've poked around the router settings and spent a good deal of time researching this; any help would be greatly appreciated...

    Why do you want to block IP addresses:  "IP Range: 0.0.0.0-99.99.99.98, and 99.99.99.100-255.255.255.255" ?   This is everybody on the web, except your router!    If you really want to block all these people, just unplug your router from your Internet connection.  That is a block that cannot be hacked!
    Normally a server is assigned a fixed LAN IP address.  This address must be outside the DHCP server range of your router, and it cannot end in 0, 1, or 255.
    Next you forward a port (for example, 99) to the server's fixed LAN IP address.
    Data arriving at the Internet port of your WRT54G for port 99 will then be forwarded to your server.  If you have other Internet services (i.e. server B) running on port 1297, then data that arrives at the Internet port of your WRT54G for port 1297 will be directed to server B.   Assuming that you only have port 99 and port 1297 open, then any other unrequested data (for any other port) that arrives at the Internet port of your WRT54G will simply be ignored (and thereby blocked).    If you connect another computer to a LAN port of the WRT54G, connect to the Internet, and request data, then when that data arrives at the Internet port of the WRT54G, it will be allowed to pass, and it will be routed to your computer.
    In summary, by default, all router ports are closed.  The only way to get data through the router is either to open a port (using port forwarding, or alternatively, the UPnP function), or for someone (or some program) on the LAN to request data from the web.
    The router cannot limit the use of a port by MAC address.    When you open a port on your router, you are opening your server to invasion from anyone on the Internet.  So, your server must be setup to protect itself.   Rather than limiting server use by MAC address (which can be faked), your server should be setup to require a user name and password. 

  • Site to Site VPN with Natting Internal IP address range?

    This is our actual Internal LAN address: 10.40.120.0/26 (Internal Range) and I want to translate to
    Translated address: 10.254.9.64.255.255.255.192(Internal)
    Our remote local address is: 10.254.5.64 255.255.255.192(Remote site Internal Ip add range)
    Based on above parameters I done this configuration
    access-list outside_cryptomap permit ip 10.254.9.64 255.255.255.192 10.254.5.64 255.255.255.192
    access-list policy-nat permit ip 10.40.120.0 255.255.255.192 10.254.5.64 255.255.255.192
    static (inside,outside) 10.254.9.64 access-list policy-nat
    I got all the Phase1 and Phase 2 parameters required and peer public ip add,
    I had set up vpn using ASDM before but this scenario is new for me, all I am wondering is there anything I need to configure to succesfully setup VPN

    Hi mate,
    yeah issue on far site they arent allowing access to the port we are trying to access, and they made it up and we are good to g now,
    One thing I am worried is only one IP add is able to access the resources, I mean i created an add range of 192.168.x.0/26, however only 192.168.x.3 one of our server is able to access the far site, havent got a clue
    config is as folllows:
    access-list pp-vpn extended permit ip 10.254.7.64 255.255.255.192 10.254.6.64 255.255.255.192
    access-list policy-nat---- extended permit ip 192.168.x.0 255.255.255.192 10.254.6.64 255.255.255.192
    static (inside,outside) 10.254.7.64 access-list policy-nat
    crypto ipsec transform-set esp-aes256-sha esp-md5-hmac
    crypto map outside_map 20 match address pp-vpn
    crypto map outside_map 20 set peer 172.162.1.2
    crypto map outside_map 20 set transform-set vpn1
    crypto map outside_map interface outside
    crypto isakmp identity address
    crypto isakmp policy 65 encyptio
    authentication pre-share         
    encryption des
    hash md5
    group 2
    lifetime 86400
    tunnel type ipsec-l2l
    tunnel-group 172.162.1.2 ipsec-attributes
    pre-shared-key *
    Thank you immensly for all your assitance
    ven

  • Network ACL for two specific ports

    As far as I can tell there is no way to set Network ACLs such that only two specific ports are available. I'm using Oracle 11gR2.
    I'd like a HTTP port and an SMTP port open for the local loopback address. These are ports 7777 and 25. It's my understanding that you can have only one ACL per host. While it seems you can create more, any additional ACL's for the same host don't always work as expected. So does anyone have any advice as how I can do this? I'd rather not have every port between 7777 and 25 available but this is what I currently have...
    DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL(
    acl => 'local_loopback.xml'
    , host => '127.0.0.1'
    , lower_port => 25
    , upper_port => 7777
    );

    Billy  Verreynne  wrote:
    As far as I can tell there is no way to set Network ACLs such that only two specific ports are available. I'm using Oracle 11gR2.>Not so in my experience. An ACL can be for a specific target, but contain multiple ports for that target.
    E.g. I assign ports 80, 7777, 8080, and a few others, in a single web-acl.xml, to a network target (host or domain).
    Read the usage notes in Oracle® Database PL/SQL Packages and Types Reference.>Thanks I'll try that. I think we had problems in the past with separate ACL's containing rules for the same host, the response we got back from support was not to do that. This way didn't occur to me.

  • Can we send a tcp/ip message from a specific port to the client

    Hi All,
    Iam currently trying to send a tcp/ip message to a remote machine on a specific destination port. For each tcp/ip message that iam sending iam able to figure out that the source port varies each time. So I wanted to know if it is possible to maintain a source
    port for sending a tcp/ip message just like a destination Port. You can see my code below for reference:
     TcpClient client = new TcpClient();          
                client.Connect("xxx.xxx.xx.xx", 2024);
                NetworkStream clientStream = client.GetStream();
                ulong refno = GetSessionID();
                DateTime dt = DateTime.Now;
                string str = dt.Year.ToString() + "-" + dt.Month.ToString() + "-" + dt.Day.ToString() + " " + dt.Hour.ToString() + ":" + dt.Minute.ToString() +
    ":00";
                ASCIIEncoding encoder = new ASCIIEncoding();
                string Input2 = "<STX>Inquire<US>REF=203.163.253.55<US>RQN=" + refno.ToString() + "<US>DTE=" + str + "<US>ACI=5274<US>ACE=C<US>ACS=A<ETX>";
                string Input3 = "<STX>Inquire<US>REF=203.163.253.55<US>RQN=" + refno.ToString() + "<US>DTE=" + str + "<US>ACI=5274<US>ACE=C<US>ACS=A<ETX><CHECKSUM>";
                int length = Input2.Length;
                string hexValue = Input2.Length.ToString("X");
                string hexValue2 = length.ToString("X");
             //   string Input = "\x02 Inquire\x1F REF=203.163.253.55\x1F RQN=" + refno.ToString() + "\x1F DTE=" + str + "\x1F ACI=5274\x1F ACE=C\x1F ACS=A\x1F \x3 \\x" + hexValue2;
                string Input = "02Inquire1FREF=203.163.253.551FRQN=" + refno.ToString() + "1FDTE=" + str + "1FACI=52741FACE=C1FACS=A1F3" + hexValue2;
                byte[] buffer = encoder.GetBytes(Input);
                clientStream.Write(buffer, 0, buffer.Length);
                clientStream.Flush();
    ram

    Hi ram,
    The TcpClient class has a constructor that receives an IPEndPoint instance, this is the local EndPoint.
    The IPEndPoint consists of two parts, the IP address and the port to use. you can specify the local port with this parameter.
    IPAddress ipAddress = Dns.GetHostEntry (Dns.GetHostName ()).AddressList[0];
    int port=9999;
    IPEndPoint ipLocalEndPoint = new IPEndPoint(ipAddress, port);
    TcpClient tcpClientA = new TcpClient (ipLocalEndPoint);
    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
    Click
    HERE to participate the survey.

  • Show mac command...to tell me the MAC adress of a specific port - Linksys SGE 2010

    Hello together,
    we are using a Linksys SGE 2010 in our small business. I would like to know which devices (MAC-Address) is behind a specific port. Does the switch have this function? I can't type commands, because the SSH or telnet interface is a menu (see screenshot). Because I want to document which PC is on which port...therefore  I need the MAC behind every specific port.
    Thank You in advance.
    Kind regards,
    Manuel Zeiler

    Manuel
    Try this forum where they have experience with your switches -
    https://supportforums.cisco.com/community/5976/small-business-switches
    you should be able to move this post there.
    Jon

  • How do I set a "fixed local address" and enable port forwarding?

    We are using an iMac G5 with an Airport Express (bought back with the G5 so it's a bit old) and I'm trying to set up the computer so that I can use it with Bosco's Screen Share.
    According to the instructions (see step 3) I need to "set your computer’s fixed address on your LAN." so that the Airport will forward a specific port. How do I go about doing this? In my network prefs the Airport is set to use DHCP. Is there something in the Airport Admin that I need to set?
    I'm unsure how to go about doing this, any help is greatly appreciated.
    Chris

    So I should create another location (in the Network prefs) specifically for screen sharing?
    If you are going to switch back and forth between the settings then go ahead but there is no need to do it.
    Would I set the port forwarding in the Airport Admin under port mapping?
    Yes

  • Cisco WLC2125 Reporting Traps to a specific port

    Hi all,
    I am currently looking into reporting options for my Cisco WLC2125. From what I can see, I have two options, SNMP or Syslog however I would like to assign either Syslog or SNMP traffic via a specific port on the controller.
    The reason is because i want to keep this traffic seperate to my wireless network.
    My knowledge of controllers (and syslog and SNMP for that matter) but I can enter IP addresses for the servers however i cannot see how to assign this traffic to a specific port.
    Is this possible? If so how?
    Many Thanks,
    -c

    No, its not possible with a 2100.  Best practices say you should only have one connection from a 2100 controller to the network, so all traffic to the network would go out that port.
    https://supportforums.cisco.com/docs/DOC-11760

  • OS X Server 3 outgoing mail relay no longer supports a specific port

    Just installed OS X Server 3 on Mavericks. All is well, but for some reason it does not allow adding a specific port for "Outgoing mail relay: mailout.isp.com:587"
    OS X Server 2 used to allow this and i used it to connect to my smtp relay from my isp. It does not allow port 25 connections. If you try this in OS X Server 3 it just complains with "bad formatting"
    Can anyone confirm this?

    Found another thread discussing this.
    https://discussions.apple.com/message/23544605#23544605
    Answer from there:
    You need to edit the postfix main.cf file manually with your favorite text editor:
    sudo vi /Library/Server/Mail/Config/postfix/main.cf
    find the line
    relayhost = host.example.com
    change it to
    relayhost = host.example.com:587 (or some other port)
    then do a
    sudo postfix reload
    to reload postfix configuration files
    and
    sudo postsuper -r ALL
    to retry sending the e-mails again.
    NOTE: If you open OS X Server 3 app and go to Mail -> Relay outgoing mail through ISP -> Edit the Outgoing server address will show as BLANK, this is normal, just click cancel and leave it alone.

  • Recording internal IP addresses using Microsoft Client

    Hello
    Some of my users are using the Microsoft built in Client in Windows to intiate VPN connections into a 3015 Concentrator.
    However, using this Client I do not seem to be able to get the 3015 to log the internal IP address the 3015 has issued from the configured pool. I need this in order to fulfil audit trail requirements but only log the username and their external (ISP) address.
    I notice that with the Cisco Client both the internal and the external IP address is recorded fine, providing an audit trail.
    The environment I work in does not allow me to specify a client type to use as this would be restricting users!
    Can anybody help me find a way to record the assigned internal IP addresses for users using non-Cisco Clients? The data I need is available in real-time from the Concentrator, but I cannot find a way to send it to a syslog server.
    thanks
    Bryn

    Try a ping broadcast - for example if your network were 192.168.1.xxx (netmask of 255.255.255.0) try this from a Termnal.app window (located in /Applications/Utilities):
         ping 192.168.1.255
    If you have a different type netmask, you need to put 255's where the 0's are in your netmask.
    Everyone on the local network (the 192.168.1.xxx network) should reply that is up and running unless you have them setup to not respond to pings (the WAN port on your TC should not reply cause it's in a different network) and you have your list of clients on the network. If you setup the TC to dedicate a range of addresses for WiFi clients you can even identify which of them are wired and which are wireless.
    good luck.

Maybe you are looking for