04-08-2008 10:51 PM - edited 03-11-2019 05:28 AM
Dear Expert,
Please help me!!! to solve this problem.
Please see in the attach file.
i want outside can access remote in to inside pass thought ASA.
but it doesn't work.
Best Regards,
rechard
04-09-2008 12:34 AM
hi,
I think these are needed:
access-list 100 extended permit tcp any host 50.50.50.50 eq pcanywhere-data
access-list 100 extended permit udp any host 50.50.50.50 eq pcanywhere-status
04-09-2008 03:17 AM
Dear Sir,
I try to tested like this but it doesn't work.
by the way when i change the like this
access-list 100 extended permit tcp any host 50.50.50.51 eq 3389 it working.
Note: Public ip add 50.50.50.51 not the same public ip add on interface e0/0.
I want to use only one public ip add for map and use in the same interface e0/0.
How can i do it? do you have any command for solve this problem?
Best Regards and Thanks,
04-09-2008 04:35 AM
Hi,
Change your ACL and static nat to the following :
access-list 100 extended permit icmp any inteface outside
access-list 100 extended permit tcp any interface outside eq 5900
access-list 100 extended permit tcp any interface outside eq 3389
for the static nat :
static (inside,ouside) interface 5900 10.10.10.2 5900 netmask 255.255.255.255
static (inside,ouside) interface 3389 10.10.10.2 3389 netmask 255.255.255.255
these commands tell the ASA to use the ip address of the outside interface.
with regards
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: