• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 463
  • Last Modified:

Simple NAT & security rule for ASA5520

Okay, so this seems like a stupid question, but for the life of me I cannot figure out what I am doing wrong.  We have a Cisco ASA5520 that I manage through the ASDM 5.1 interface.  I am trying to do a simple configuration to allow any outside traffic to NAT from a public IP address 111.111.111.111 to an internet IP address 000.000.000.000.  I only want port 9675 to be allowed to access that from the outside though.

That being said, the server that I am nat'ing to is on the internal interface.  What all do I need to do to accomplish this? (using the ADSM preferably)
0
rustyrpage
Asked:
rustyrpage
1 Solution
 
rsivanandanCommented:
I do not know ASDM, but this is what you need; Assuming it is tcp traffic;

static (inside,outside) tcp 111.111.111.111 9675 000.000.000.000 9675

access-list <Name> permit tcp any host 111.111.111.111 eq 9675

access-group <Name> in interface outside

In the above, if the protocol is udp, replace tcp whereever it occurs.

As well, replace the acl name with whatever you have as of now.

Cheers,
Rajesh
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now