NAT Port Forwarding on a Cisco ASA 5510 with ASDM
Posted on 2009-04-14
I've recently put a Cisco ASA 5510 in and I'm having a problem with a Static NAT port forward.
The Outside interface has multiple IP's assigned and had been configured with a port forward as below:
Original Source: webserver
Original Service: https
Translated Interface: external
Translated Address: external
Translated Service: https
This works fine if users access on the first IP of the block (e.g 220.127.116.11) however when someone tries to come in on a different IP (e.g. 18.104.22.168) it gives a 'TCP connection denied flags SYN on interface external' error.
Any suggestions? The above does work if I set the 22.214.171.124 as the specified IP however we ideally want all the external IP's to work.