Routing SSL Traffic Based on Port

Answered Question
Apr 2nd, 2007

Hello,

Basically my current setup is that I have a group of webservers and database servers behind my ASA firewall, I am looking to allow SSL for specific actions through the website.

I was curious if anyone had a configuration example for something like this:

I would like all traffic from IP (10.10.100.1) HTTP (Port 80) to route to Server A (10.10.10.10) and all traffic from (10.10.100.1) that is going to HTTPS (Port 443) to route to server B (10.10.10.11)

I couldnt find any specific examples in the Command Line Configuration guide, just wondering if someone could provide me an example of what the config would look like.

Thanks in advance,

Chris

I have this problem too.
0 votes
Correct Answer by gecko2207 about 9 years 8 months ago

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
gecko2207 Mon, 04/02/2007 - 07:59

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

conversyschris Mon, 04/02/2007 - 08:32

Yep thats it, I know it was a very generic pretty simple question, but I had spent some time digging around and couldn't find it, thanks for the help

Actions

This Discussion