?
Solved

Cisco firewall port forwarding

Posted on 2013-05-16
4
Medium Priority
?
671 Views
Last Modified: 2014-08-18
I am trying to set up a port forward on a cisco isa550 firewall. I am wanting to forward port 3390 to an internal IP address. I have set up the port forward and ACL in the firewall, but every time I try to remote in with Remote Desktop it does not work. It will work from within the the network by typing the internal IP address instead of the wan address. Any ideas?
0
Comment
Question by:ltwilliams
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Accepted Solution

by:
Akinsd earned 2000 total points
ID: 39173335
Port forwarding is Static NAT in enterprise devices.
0
 
LVL 1

Author Comment

by:ltwilliams
ID: 39173346
So you are saying dont put anything in port forwarding, use static nat?
0
 
LVL 18

Expert Comment

by:Akinsd
ID: 39173374
Looks like you are using ASDM

I use command line as that gives me a lot more control. You can use that, I guess. To be safe, turn on the feature that lets you view cli commands before delivering it to the device. I believe that is in preferences somewhere.

The idea is to identify source IP address and port. You can specify any for both. Identify the destination port 3390. Them specify the IP or host name of computer you're forwarding to.

To access the PC on that port, you may need to specify the port after the public IP. Generally, RDP will append :3389 for RDP communications when not specified. Eg
10.10.10.10:3390

Verify that RDP traffic is permitted on your firewall (ASA) and the firewall of the destination pc (if firewall is enabled there)

Lastly, make sure to turn on RDP feature on the destination PC and the user you are logging on as is allowed (if 'everyone' is not granted access)
0
 
LVL 18

Expert Comment

by:fgasimzade
ID: 39178731
Can you post your config?
0

Featured Post

Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question