Remote desktop outside to Inside on ASA

rechard_david · ‎04-08-2008

Dear Expert,

Please help me!!! to solve this problem.

Please see in the attach file.

i want outside can access remote in to inside pass thought ASA.

but it doesn't work.

Best Regards,

rechard

dongdongliu · ‎04-09-2008

hi,

I think these are needed:

access-list 100 extended permit tcp any host 50.50.50.50 eq pcanywhere-data

access-list 100 extended permit udp any host 50.50.50.50 eq pcanywhere-status

rechard_david · ‎04-09-2008

Dear Sir,

I try to tested like this but it doesn't work.

by the way when i change the like this

access-list 100 extended permit tcp any host 50.50.50.51 eq 3389 it working.

Note: Public ip add 50.50.50.51 not the same public ip add on interface e0/0.

I want to use only one public ip add for map and use in the same interface e0/0.

How can i do it? do you have any command for solve this problem?

Best Regards and Thanks,

alanajjar · ‎04-09-2008

Hi,

Change your ACL and static nat to the following :

access-list 100 extended permit icmp any inteface outside

access-list 100 extended permit tcp any interface outside eq 5900

access-list 100 extended permit tcp any interface outside eq 3389

for the static nat :

static (inside,ouside) interface 5900 10.10.10.2 5900 netmask 255.255.255.255

static (inside,ouside) interface 3389 10.10.10.2 3389 netmask 255.255.255.255

these commands tell the ASA to use the ip address of the outside interface.

with regards