Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
210
Views
0
Helpful
1
Replies

IP's dont work

ptlane123
Level 1
Level 1

‎11-07-2007 12:27 PM - edited ‎03-09-2019 07:17 PM

I was given a block of IP's [six usable]and wanted to test out RDP. I added these commands to our ASA 5510 FW:

access-list inbound extended permit tcp any host 72.164.1xx.xx eq 3389

static (inside,outside) 72.164.1xx.xx 192.168.2.4 netmask 255.255.255.255

What happens is that not only can't I connect to the 192.168.2.4 with RDP, I can't browse out to the internet from the 192.168.2.4 IP. Am I missing a command?

Thanks

Labels:
0 Helpful
1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

‎11-07-2007 08:37 PM

Paul, could you post asa config. For your inside hosts to go out internet you need couple of statement in your firewall.

e.g.

nat (inside) 1 0.0.0.0 0.0.0.0

global (outside) 1 interface

this should allow your inside get outbound access to internet.

as for your new IP block, make sure RDP is enable on the machine and that no firewall is neither enable if it is an XP machine.

access list should be something like this:

e.g

your static NAT is ok.

access-list outside_access_in permit tcp any host 72.164.x.x eq 3389

access-group outside_access_in in interface outside

HTH

Jorge

Jorge Rodriguez
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents