I have a cisco 1841 router on my network that also acts as our firewall. I'm trying to allow port 389 (ldap) and forward it to an internal server so my external website can query active directory.
I set up following rule as #1 in my access-list (with xx.xx.xx.xx as my public IP address)
9 permit tcp any host eq 389
And I set up the following for NAT
Pro Inside global Inside local Outside local Outside global
tcp xx.xx.xx.xx:389 10.1.1.21:389 --- ---
However when I cannot bind to my ldap server from the internet and when I run nmap on the router I get this
PORT STATE SERVICE
80/tcp open http
443/tcp closed https
49157/tcp closed unknown
No port 389? Can someone help?