内网通过公网IP访问内网服务器的问题

405759601

我使用了重定向的方式配置，但是不成功，请大家帮看一下配置：
#
time-range alltime 00:00 to 23:59 daily   
#
drop illegal-mac alarm
#
ipv6
#
dns resolve  
dns server 202.103.224.68
dns server 202.103.225.68
dns proxy enable
#
wlan ac-global carrier id other ac id 0
#
dhcp enable
#
pki realm default
enrollment self-signed
#
ssl policy default_policy type server
pki-realm default
#
acl name server_0.2 2998  
rule 10 permit source 192.168.0.2 0      
acl name inside 2999  
rule 10 permit source 192.168.0.0 0.0.7.255
#
acl number 3000  
rule 5 permit udp source 192.168.0.0 0.0.7.255 destination 113.xxx.xxx.26 0
rule 10 permit tcp source 192.168.0.0 0.0.7.255 destination 113.xxx.xxx.26 0
acl number 3100  
rule 1 permit ip source 192.168.0.3 0
rule 5 permit ip source 192.168.0.2 0
rule 100 deny ip source 192.168.0.0 0.0.0.255
rule 110 permit ip
#
traffic classifier redirect operator or
if-match acl 3000
#
traffic behavior redirect
redirect ip-nexthop 113.xxx.xxx.25
#
traffic policy SAC_manager
traffic policy redirect
classifier redirect behavior redirect
#
aaa
authentication-scheme default            
authorization-scheme default
accounting-scheme default
domain default  
domain default_admin  
local-user admin password cipher %@%@cY|)O+Y7\7&=vjK[{U2PVzT)%@%@
local-user admin privilege level 15
local-user admin service-type telnet http
#
firewall zone Local
priority 64
#
interface GigabitEthernet0/0/0
tcp adjust-mss 1460
ip address 113.xxx.xxx.26 255.255.255.252
traffic-policy SAC_manager outbound
nat server protocol tcp global interface GigabitEthernet 0/0/0 www inside 192.168.0.3 www
nat server protocol tcp global current-interface 8000 inside 192.168.0.2 8000
nat server protocol tcp global interface GigabitEthernet 0/0/0 6662 inside 192.168.0.2 6662
nat server protocol tcp global interface GigabitEthernet 0/0/0 6660 inside 192.168.0.2 6660
nat server protocol tcp global interface GigabitEthernet 0/0/0 6661 inside 192.168.0.2 6661
nat server protocol tcp global interface GigabitEthernet 0/0/0 6663 inside 192.168.0.2 6663
nat server protocol udp global interface GigabitEthernet 0/0/0 6662 inside 192.168.0.2 6662
nat server protocol udp global interface GigabitEthernet 0/0/0 6660 inside 192.168.0.2 6660
nat server protocol udp global interface GigabitEthernet 0/0/0 6661 inside 192.168.0.2 6661
nat server protocol udp global interface GigabitEthernet 0/0/0 6663 inside 192.168.0.2 6663
nat server protocol tcp global interface GigabitEthernet 0/0/0 36500 inside 192.168.0.2 36500
nat server protocol udp global interface GigabitEthernet 0/0/0 36501 inside 192.168.0.2 36501
nat outbound 2999
#
interface GigabitEthernet0/0/1
tcp adjust-mss 1460
ip address 192.168.0.1 255.255.248.0
traffic-filter inbound acl 3100
traffic-policy redirect inbound
#
interface GigabitEthernet0/0/2
tcp adjust-mss 1460
ip address dhcp-alloc
#
interface Cellular0/0/0
#
interface Cellular0/0/1
#
interface NULL0
#
snmp-agent local-engineid 800007DB0394DBDA514450
#
http server port 8080                    
http secure-server ssl-policy default_policy
http server enable
http secure-server enable
#
ip route-static 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0 113.xxx.xxx.25
#
user-interface con 0
authentication-mode password
set authentication password cipher %@%@YO"29,}y]#~m(#Ak]"\",)V>kUMV2USOs~f.'2XGF{0M)VA,%@%@
user-interface vty 0
authentication-mode aaa
user privilege level 15
user-interface vty 1 4
#
wlan ac
#
voice
#
diagnose
#
return