Solved

How to configure port-forwardning on Cisco ASA 5520 (8.3)?

Posted on 2010-11-22
4
2,348 Views
Last Modified: 2012-05-10
Hi,
I have an internal webserver with a private ip-address. I want to let one spesific, external address access this web-server and therefore need to configure port-forwarding on my ASA 5520 running version 8.3(2). How should I configure this?
0
Comment
Question by:thoree
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 8

Expert Comment

by:ShareefHuddle
ID: 34191250
0
 

Author Comment

by:thoree
ID: 34191289
Thanks for the tip, but this is for an old version. NAT/PAT was completely rewritten in version 8.3 so I need updated info on this.
0
 
LVL 8

Expert Comment

by:ShareefHuddle
ID: 34191346
Oops, my bad. Here is a conversion table from pre-8.2 to 8.3.

https://supportforums.cisco.com/docs/DOC-9129
0
 
LVL 7

Accepted Solution

by:
kellemann earned 500 total points
ID: 34195811
Here's a specific example:

8.2 style commands:
access-list outside-in extended permit tcp any interface outside eq smtp
static (inside,outside) tcp interface smtp 10.0.1.34 smtp netmask 255.255.255.255

Same in 8.3 :
object network obj-10.0.1.34-mailsrv-tcp25
 host 10.0.1.34
access-list outside-in extended permit tcp any object obj-10.0.1.34-mailsrv-tcp25 eq smtp
object network obj-10.0.1.34-mailsrv-tcp25
 nat (inside,outside) static interface service tcp smtp smtp
0

Featured Post

Enroll in May's Course of the Month

May’s Course of the Month is now available! Experts Exchange’s Premium Members and Team Accounts have access to a complimentary course each month as part of their membership—an extra way to increase training and boost professional development.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Network over eigrp 100 topology ? 3 93
Cisco EAP TLS, ACS and changing Root CA 4 78
Cisco 3650 switch 1G port to 10G port 6 47
Change "enable" password on Cisco Router 7 57
Overview The Cisco PIX 501, PIX 506e, ASA 5505 and ASA 5510 (most if not all of this information will be relevant to the PIX 515e but I do not have a working configuration handy to verify the validity) are primarily used within small to medium busi…
This article assumes you have at least one Cisco ASA or PIX configured with working internet and a non-dynamic, public, address on the outside interface. If you need instructions on how to enable your device for internet, or basic configuration info…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question