Cisco ASA5505

Posted on 2011-10-03
Last Modified: 2013-11-29
How can i allow traffic only by public IP address in my ASA5505 router
Question by:Prabir_Bhattacharjee
    LVL 14

    Expert Comment

    kindly brief more about your exact requirements..

    Author Comment

    I have configure a RDP server to access my office data. And i did port forwarding in my CISCO ASA5505, and everything is working fine. Currently i like to setup it in such way that only pre-define public ip address can access my network, if some one tries from some other location ASA should reject the traffic. Basically i am try to filter my incoming traffic by Public IP ADDRESS
    LVL 14

    Expert Comment


    configure an access-list to allow only the known IP adress and applied it as "in:" to the interface facing internet/outside.
    LVL 9

    Accepted Solution

    Your existing access-list probably looks like:

    access-list outside_access_in permit tcp any interface outside eq 3389

    Remove this config by putting "no" in front of it and applying it.  Change this to something like:

    access-list outside_access_in permit tcp interface outside eq 3389

    or if you wanted to just permit one single IP then:

    access-list outside_access_in permit tcp host interface outside eq 3389

    (replace the IPs with your IPs you want configured)

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    How to sign a powershell script so you can prevent tampering, and only allow users to run authorised Powershell scripts
    Password hashing is better than message digests or encryption, and you should be using it instead of message digests or encryption.  Find out why and how in this article, which supplements the original article on PHP Client Registration, Login, Logo…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now