Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 530
  • Last Modified:

Remote Access for CCTV behind ASA 5505

Hi,

We have a CCTV system using the vxh264pro CCTV system.

I need to allow an app on iPhone to connect externally to the CCTV system so that it can be monitored on the go.

The CCTV system has an internal IP of 10.0.0.13. It is connected to via 2 ports. HTTP 6200 and RTSP 1554.

We have a static global IP address.

Can anyone help with this?
0
willholt89
Asked:
willholt89
  • 4
  • 2
1 Solution
 
stergiumCommented:
hello.
Try using these:

hostname(config)# object network name
hostname(config-network-object)# host 10.0.0.13
hostname(config-network-object)# nat (inside,outside) static interface service tcp 6200 6200
hostname(config-network-object)# nat (inside,outside) static interface service tcp 1554 1554

You need also to configure an ACL permitting tcp traffic destined for inside address and corresponding ports then apply it inbound on interface outside:

access-list OUT_IN extended  permit tcp any host 10.0.0.13 eq  6200

access-list OUT_IN extended  permit tcp any host 10.0.0.13 eq  1554
accesss-group OUT_IN in interface outside

the above should suffice to your needs. I hope that helps
0
 
willholt89Author Commented:
do I change object network name to the name of my network? or could I call it CCTV
0
 
stergiumCommented:
change it to something familiar like cctv .  object network cctv  (should be the command)
0
Configuration Guide and Best Practices

Read the guide to learn how to orchestrate Data ONTAP, create application-consistent backups and enable fast recovery from NetApp storage snapshots. Version 9.5 also contains performance and scalability enhancements to meet the needs of the largest enterprise environments.

 
willholt89Author Commented:
Hi Stergium. Many thanks for your prompt replies. I get the error when trying to identify the host

Euro-PIX(config-network)# host 10.0.0.13
ERROR: Invalid hostname: '10.0.0.13'
INFO: A hostname must start and end with a letter or digit, and have as interior characters only letters, digits, or a hyphen.
0
 
willholt89Author Commented:
Just realised my asa is running version 8.0 and these commands are for version 8.3 and later. do you know the equivalent syntax for 8.0
0
 
willholt89Author Commented:
Thank you for your help. I was able to use the new syntax to workout what I needed to type in for the old syntax. Much appreciated

Will
0

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now