Solved

Remote Access for CCTV behind ASA 5505

Posted on 2014-01-09
6
510 Views
Last Modified: 2014-04-30
Hi,

We have a CCTV system using the vxh264pro CCTV system.

I need to allow an app on iPhone to connect externally to the CCTV system so that it can be monitored on the go.

The CCTV system has an internal IP of 10.0.0.13. It is connected to via 2 ports. HTTP 6200 and RTSP 1554.

We have a static global IP address.

Can anyone help with this?
0
Comment
Question by:willholt89
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 13

Accepted Solution

by:
stergium earned 500 total points
ID: 39767436
hello.
Try using these:

hostname(config)# object network name
hostname(config-network-object)# host 10.0.0.13
hostname(config-network-object)# nat (inside,outside) static interface service tcp 6200 6200
hostname(config-network-object)# nat (inside,outside) static interface service tcp 1554 1554

You need also to configure an ACL permitting tcp traffic destined for inside address and corresponding ports then apply it inbound on interface outside:

access-list OUT_IN extended  permit tcp any host 10.0.0.13 eq  6200

access-list OUT_IN extended  permit tcp any host 10.0.0.13 eq  1554
accesss-group OUT_IN in interface outside

the above should suffice to your needs. I hope that helps
0
 

Author Comment

by:willholt89
ID: 39767497
do I change object network name to the name of my network? or could I call it CCTV
0
 
LVL 13

Expert Comment

by:stergium
ID: 39767507
change it to something familiar like cctv .  object network cctv  (should be the command)
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:willholt89
ID: 39767576
Hi Stergium. Many thanks for your prompt replies. I get the error when trying to identify the host

Euro-PIX(config-network)# host 10.0.0.13
ERROR: Invalid hostname: '10.0.0.13'
INFO: A hostname must start and end with a letter or digit, and have as interior characters only letters, digits, or a hyphen.
0
 

Author Comment

by:willholt89
ID: 39767700
Just realised my asa is running version 8.0 and these commands are for version 8.3 and later. do you know the equivalent syntax for 8.0
0
 

Author Comment

by:willholt89
ID: 39767765
Thank you for your help. I was able to use the new syntax to workout what I needed to type in for the old syntax. Much appreciated

Will
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Read about achieving the basic levels of HRIS security in the workplace.
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question