Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 332
  • Last Modified:

Need Rule for ASA

ASA running 8.3(2)

Want to be able to hit an internal IP addy from the outside.  

Generally, I would do something like this (assume internal is 10.0.0.1, external is 74.75.76.77 and port is 5001)

access-list inbound permit tcp any host 74.75.76.77 eq 5001
static (inside,outside) tcp interface 5001 10.0.0.1 5001 netmask 255.255.255.255 0 0

With the second command I get an error about "This syntax of nat command has been deprecated".

Can someone tell me the new syntax, please?
0
dougp23
Asked:
dougp23
  • 2
1 Solution
 
Hassan BesherCommented:
Try the following config:

object network obj-10.0.0.1
   host 10.0.0.1
   nat (inside,outside) static  74.75.76.77  service tcp 5001
0
 
dougp23Author Commented:
Thanks Hassan,

however, with the second line I get an "Error Incomplete Command", even though the syntax is perfect according to IOS when configuring, and the manuals....

Any idea?
0
 
dougp23Author Commented:
got the syntax right.  thanks!
0

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now