cisco 887 port forwarding from a fixed IP

✨ Quic broadband | Apple TV | Samsung | AliExpress | Wise | Sharesies

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › cisco 887 port forwarding from a fixed IP

aaj1

1 post

Wannabe Geek

#153881 11-Oct-2014 04:45

Send private message

Hi

I have set up my CISCO 887 ADSL router and it works for internet traffic i.e. machines on my inside network can get on the internet OK.
I have added a port forward for remote desktop on port 3389 to redirect to a local machine and this also works i.e. I can RDT into the machine in my network on 10.1.0.4.

What I need to do now is lock down the port forwarding ive set up on 3389 so it only accepts traffic from a single static ip address.

This is the config I have so far
Dialer ....
interface Dialer0
ip address negotiated
no ip redirects
no ip unreachables
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp chap hostname
ppp chap password 0
no cdp enable
!
Routing...
!
ip nat inside source list 100 interface Dialer0 overload
ip nat inside source static tcp 10.1.0.4 3389 interface Dialer0 3389
ip route 0.0.0.0 0.0.0.0 Dialer0
!
Access List...
access-list 100 permit ip 10.1.0.0 0.0.0.255 any

So what I think I need to do is to modify...
ip nat inside source static tcp 10.1.0.4 3389 interface Dialer0 3389
to something like
ip nat inside source static tcp 10.1.0.4 3389 xxx.xxx.xxx.xxx 3389 where xxx.xxx.xxx.xxx 3389 is my fixed IP i want to allow traffic from.

I have tried this any if I replace Dialer0 with an IP address, it just doesn't work.

If anyone has any ideas or links it would be much appreciated

thanks

Andy

hashbrown

463 posts

Ultimate Geek
+1 received by user: 131

#1151696 11-Oct-2014 08:59

Send private message

I'm a bit rusty on Cisco, but I don't believe you can control it like that from the NAT config. I'd look at setting up a firewall ACL (probably a good idea anyway), and allowing 3389 inbound from your trusted source.

News and reviews »

New ECOVACS DEEBOT T80S OMNI Available Now
Posted 9-Apr-2026 11:11

Ring Brings 4K Video to Battery-Powered Doorbells
Posted 9-Apr-2026 11:01

Synology Announces a New Privacy-First Home Monitoring Experience for BeeStation Plus
Posted 9-Apr-2026 10:02

GIGABYTE X870E AERO X3D DARK WOOD Redefines the Motherboard
Posted 7-Apr-2026 14:06

Datacom Acquires Auckland Data Centre from T4
Posted 2-Apr-2026 09:43

Spark Launches Satellite Service with SMS and data options
Posted 2-Apr-2026 09:16

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Support Geekzone »

You can support Geekzone with a one-off or recurring donation via PressPatron.

RSS feeds: Main feed; Forums feed
Copyright: ©2002-2026 Geekzone®

Site features: Geekzone BI dashboard; Geekzone Badges; Geekzone Status Page

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising; Trademark and copyright