We help IT Professionals succeed at work.

whitelist for Cisco 5505 using ASDM

lilthrift
lilthrift asked
on
Medium Priority
2,699 Views
Last Modified: 2012-03-12
Hi,

We have about 50 ASA 5505's deployed and I need to add the following IP range to allow each site to be able to resolve.

IP Address Range using CIDR Notation
170.x.x.0/16

or

IP Address with Subnet Mask
170.x.0.0 / 255.255.0.0

Port 80 (HTTP)

Port 443 (HTTPS)

I would like to be able to do this remotely from corporate by using PC Anywhere (we are very spread out). I need specific instructions to add this through the GUI ASDM. I am not a network specialists so keep that in mind. If there is a wizard in the ASDM to do this that would be great.If it can't be done through the ASDM I will take a command line answer.

Right now ALL traffic is blocked in the ASA EXCEPT back to our corporate office via a VPN tunnel.

Thank you!
Comment
Watch Question

CERTIFIED EXPERT

Commented:
there is chance that i may not understand your query properly...
for setting up VPN ..better to create separate network for each and every location.
try to avoid same range IP address... even in a ADSL modem/router or may be in ILL/LL.

try to use ASDM 5.2 to get the configuration done.

Author

Commented:
I'm not trying to create a VPN. Just want to punch a hole in the firewall to the IP range above.
CERTIFIED EXPERT
Commented:
you want to add ip....i think you have to create NAT for that

after login to ASA5505----> go to device manager---->configuration--->just click on the firewall and then click on the NAT---->add static NAT rule.

create source and destination ip(means interface inside and interface outside) for to and fro.

one step by step configuration guide is given ...please take a help of it...

add ip -nat

Author

Commented:
dipra,

you were close enough to get me what I needed although I ended up creating access rule instead of Nat rule.

Thanks for the help