Chris Ripoll
asked on
What are the cli steps to port forward a range of ports to an inside host - ASA 5506
For example I have an inside host on 192.168.1.10 and I need to port forward ports 5000 to 5010 from the outside.
What are the steps please.
What are the steps please.
Chris,
Hope this will sort out u r confusion.
Create the Inbound ACL for ports you need open
access-list outside_access_in extended permit <tcp or udp> any host <public ip> range 5000 5010
NAT the external IP to the private IP
static (inside,outside) <public ip> <private ip> netmask 255.255.255.255
Apply the ACL to the interface
access-group outside_access_in in interface outside
Hope this will sort out u r confusion.
Create the Inbound ACL for ports you need open
access-list outside_access_in extended permit <tcp or udp> any host <public ip> range 5000 5010
NAT the external IP to the private IP
static (inside,outside) <public ip> <private ip> netmask 255.255.255.255
Apply the ACL to the interface
access-group outside_access_in in interface outside
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
You likely can use the following as a guide.
http://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/118996-config-asa-00.html