Port redirection on an ASA5510

I have a server on the inside of the ASA5510 that i would like to RDP to from the internet.
I would also like to use port 3386 on the public IP and translate that to port 3389 on the server.
So far i have entered the following commands
static (172net,WAN) tcp interface 3386 172.16.0.11 3389 netmask 255.255.255.255
access-group WAN_access_in in interface WAN
access-list WAN_access_in extended permit tcp any host 172.16.0.11

I am getting dropped due to the NAT rule according to the trace

Where am i going wrong?
Skip53Asked:
Who is Participating?
 
ullas_unniConnect With a Mentor Commented:
the ace is wrong, it has to be....

access-list WAN_access_in extended permit tcp any interface outside eq 3386
access-group WAN_access_in in interface WAN
0
 
Skip53Author Commented:
got an error when i entered that command.
Should it be:
access-list WAN_access_in extended permit tcp any interface WAN eq 3386

0
 
Skip53Author Commented:
tried both that but still getting error
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.