whitelist for Cisco 5505 using ASDM

Hi,

We have about 50 ASA 5505's deployed and I need to add the following IP range to allow each site to be able to resolve.

IP Address Range using CIDR Notation
170.x.x.0/16

or

IP Address with Subnet Mask
170.x.0.0 / 255.255.0.0

Port 80 (HTTP)

Port 443 (HTTPS)

I would like to be able to do this remotely from corporate by using PC Anywhere (we are very spread out). I need specific instructions to add this through the GUI ASDM. I am not a network specialists so keep that in mind. If there is a wizard in the ASDM to do this that would be great.If it can't be done through the ASDM I will take a command line answer.

Right now ALL traffic is blocked in the ASA EXCEPT back to our corporate office via a VPN tunnel.

Thank you!
lilthriftAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

DIPRAJCommented:
there is chance that i may not understand your query properly...
for setting up VPN ..better to create separate network for each and every location.
try to avoid same range IP address... even in a ADSL modem/router or may be in ILL/LL.

try to use ASDM 5.2 to get the configuration done.
0
lilthriftAuthor Commented:
I'm not trying to create a VPN. Just want to punch a hole in the firewall to the IP range above.
0
DIPRAJCommented:
you want to add ip....i think you have to create NAT for that

after login to ASA5505----> go to device manager---->configuration--->just click on the firewall and then click on the NAT---->add static NAT rule.

create source and destination ip(means interface inside and interface outside) for to and fro.

one step by step configuration guide is given ...please take a help of it...

add ip -nat
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lilthriftAuthor Commented:
dipra,

you were close enough to get me what I needed although I ended up creating access rule instead of Nat rule.

Thanks for the help
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.