• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 707
  • Last Modified:

Trying to understand firewall configuration on a Cisco ASA 5505

I'm trying to get a handle on the new ASA 5505 that I hired a contractor to install in the office.  The contractor used scripting to configure the ASA, and it works great.  I'm not a network guy, and I'll never be a network guy, but I would like the ability to administer the device using the ASDM interface at a basic level.  

I'm trying to poke a hole in the firewall and set up the appropriate port forwarding on the device.  I just created a new firewall hole for the Crash Plan utility (port 4242, images 1 and 2) and set up port forwarding as well (image 3).  Now, I'm using canyouseeme.org to determine if the ports the contractor configured are open (SSH and HTTPS) and if my port is open (CRASH_PLAN).  Image 4 shows the results.  It sure looks like my contractor did something right and I something wrong.  (I suppose it's also possible that canyouseeme.org is not a valid tool with which to check the status of a port on the ASA 5505.)  Suggestions?
Access-Rules-1.png
Access-Rules-2.png
NAT-Rules.png
CanYouSeeMe-Results.png
0
jdana
Asked:
jdana
  • 2
1 Solution
 
SouljaCommented:
Based on your pictures it looks like it may be configured right. Have you tried to actually tested to see if you can access the Crash Plan from outside your network?
0
 
SouljaCommented:
Try changing the setting in picture one for destination to the wan ip, similar to how VNC is configured. See what you get.
0
 
JorisFRSTCommented:
Can you post the config ?
0
 
jdanaAuthor Commented:
Soulja,

canyouseeme.com wasn't a valid test.  The utility worked.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now