Open ftp port on asa5510 for 1 IP

i need to open ftp port from outside (for example 170.170.170.170)  for client IP on ASA5510.
what command should i use if the server is on the inside interface wiht IP 10.10.10.10 for example. Please be details so i can put the code in the right direction.
Thank you.
FaustinoeltinoAsked:
Who is Participating?
 
RustyZ32Connect With a Mentor Commented:
static (inside,outside) tcp interface ftp 192.168.1.101 ftp netmask 255.255.255.255

access-list outside_access_in extended permit tcp any host outsideip eq ftp




replace outside_access_in with whatever your outside access list is and outsideip with your external IP address. those commands will use the existing outside IP on your firewall. if you want to use a different public IP than the outside you can do it as follows:

static (inside,outside) outsideip insideip netmask 255.255.255.255

access-list outside_access_in extended permit tcp any host outsideip eq ftp

0
 
rsivanandanCommented:
The above plus the below as well to apply it onto the interface;

access-group outside_access_in in interface outside

Cheers,
rsivanandan
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.