Solved

Map private IP to outgoing public ip address

Posted on 2011-03-03
5
702 Views
Last Modified: 2012-05-11
We use a Cisco ASA 5510 in our data center. Admittedly I am not familiar with this firewall at all, working mainly on Fortigate units. I am looking to map one of our private IP addresses to one of our available public IP addresses on our WAN for the purpose of sending out email. I am hoping someone can get me started in the right direction to get this accomplished.

Regards,
0
Comment
Question by:GCaron
  • 4
5 Comments
 
LVL 4

Expert Comment

by:Llacy80
ID: 35027149
access-list incoming extended permit tcp any host 66.xxx.xx.x eq www
static (inside,outside) 66.xx.xx.xx 192.168.100.6 netmask 255.255.255.255
0
 

Author Comment

by:GCaron
ID: 35027196
Any idea how to achieve this using the Cisco ASDM 6.1 GUI?
0
 
LVL 4

Expert Comment

by:Llacy80
ID: 35027224
Sorry. It would look like the statement below rather than the one I posted above since you will be using smtp

Command to Enable Nat -->
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0


static (inside,outside) 66.xx.xx.xx 192.168.100.6 netmask 255.255.255.255  -- This is your NAT statement that you want to add

access-list incoming extended permit tcp any host 66.xxx.xx.x eq smtp  --- This is your access rule that allows smtp traffic
0
 
LVL 4

Expert Comment

by:Llacy80
ID: 35027231
I am not sure. I have never used the Gui before : -(.... Hopefully someone else can help with that.


0
 
LVL 4

Accepted Solution

by:
Llacy80 earned 500 total points
ID: 35027282
http://www.cisco.com/en/US/docs/security/asdm/6_1/user/guide/nat.html#wp1072634

Go down to the Configuring Static Policy NAT, PAT, or Identity NAT  section (Figure 21-22) will show how to configure Static Nat through the Gui interface.

The same guide will also show you how to set up the access rule for SMTP through Gui.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now