1 Public IP mapping to many Private IPs?

Answered Question

Mapping one public IP to many private IPs via different ports is normally supported in some firewalls.

What about Cisco PIX or ASA? Is this possible that we can configure that if somebody hit public IP 83.232.212.98 on port 8000 then take it to 192.168.1.1 and if same public IP got hit on port 9000 then map connect to 192.168.1.2. Is this possible? If yes then please somebody help me.

Correct Answer by acomiskey about 10 years 1 week ago

Yes this is possible.


static (inside,outside) tcp 83.232.212.98 8000 192.168.1.1 8000 netmask 255.255.255.255

static (inside,outside) tcp 83.232.212.98 9000 192.168.1.2 9000 netmask 255.255.255.255

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.8 (3 ratings)
Loading.
Correct Answer
acomiskey Mon, 06/18/2007 - 05:54
User Badges:
  • Green, 3000 points or more

Yes this is possible.


static (inside,outside) tcp 83.232.212.98 8000 192.168.1.1 8000 netmask 255.255.255.255

static (inside,outside) tcp 83.232.212.98 9000 192.168.1.2 9000 netmask 255.255.255.255

JORGE RODRIGUEZ Mon, 06/18/2007 - 07:41
User Badges:
  • Green, 3000 points or more

In addition to acomiskey static nat the ACL is a must.


access-list outside access_in permit tcp any host 83.232.212.98 eq 8000

access-list outside access_in permit tcp any host 83.232.212.98 eq 9000

access-group outside access_in in interface outside




Actions

This Discussion