Hi all!

guys I have this kind of situation:

I have two routers, R1 is Dlink DIR-100 and R2 is Cisco 877W.

R1 is connected to the internet throught its WAN interface.
R2 is connected to the LAN port of R1 in DMZ mode. NAT is ON.
Everything else (computers, laptops) are connected to the R2.

I have configured port forwarding on R2 router so I can use any service I want (like remote desktop) on any machine behind R2, it's working well, but I can't connect directly to R2 router from internet. I'm trying to log to it by telnet and this is what I get in the active session logs of R1 router:



192.168.1.2 is an interface of R2 router connected to the R1 in DMZ mode.

Seems like R2 interface is trying to respond to itself rather than to public IP address of the source.

any ideas?

thanks!

First thing I can say it get rid of the DLink. That will get rid of a double NAT that you have going on. If it isn't causing problems now it just might in the future. It is a redundant piece of equipment that isn't needed. Use the Cisco as your only router. Then (as per my experience with my own/other setups) you should be able to telnet (ssh would be a lot better) to your router. I had the sort of thing going on at home (ISP router then my own 861W). As for your Cisco replying to the Dlink... you have NAT running on your DLink so the Cisco sees all traffic coming from the DLink with the private IP.

thanks for your reply

I have cable internet, I was trying to use only 877W as you mentioned, but in fact that it has only DSL WAN port, I was using it in trunk mode. Ethernet -> trunk -> VLAN (NAT OUT). This works for about 10 minutes, then vlan interface looses connection with gateway and I have to restart it in order to reestablish connection.

I have made many posts about this problem with cisco but it seems nobody can tell what exactly is wrong with it. You can check it out here or here. So I decided to put another router, in this case d-link.