nwerner
asked on
Cisco ASA 5510 8.4 Static NAT issue
I am trying to setup static nat for multiple ports from outside to dmz. Here's my statement:
object network dmz_web
host 10.10.1.10
nat (dmz,outside) static x.x.x.x service tcp 20 20
nat (dmz,outside) static x.x.x.x service tcp 22 22
nat (dmz,outside) static x.x.x.x service tcp 80 80
nat (dmz,outside) static x.x.x.x service tcp 443 443
nat (dmz,outside) static x.x.x.x service tcp 3389 3389
My device takes the statement, but only the last nat (3389) remains in my config. Is there a way to setup multiple nat ports without having to recreate the same host 5 times and fill my device up with bloat? Or would it be better to just map public to private IP and limit ports using acl?
Thanks!!
object network dmz_web
host 10.10.1.10
nat (dmz,outside) static x.x.x.x service tcp 20 20
nat (dmz,outside) static x.x.x.x service tcp 22 22
nat (dmz,outside) static x.x.x.x service tcp 80 80
nat (dmz,outside) static x.x.x.x service tcp 443 443
nat (dmz,outside) static x.x.x.x service tcp 3389 3389
My device takes the statement, but only the last nat (3389) remains in my config. Is there a way to setup multiple nat ports without having to recreate the same host 5 times and fill my device up with bloat? Or would it be better to just map public to private IP and limit ports using acl?
Thanks!!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.