Multiple Port Mapping ASA 8.0.3

Unanswered Question
Feb 19th, 2009
User Badges:

I have a webserver that that has a portmapping from the outside x.x.x.x port 80 to a dmz address y.y.y.y port 82. Works fine. I want to have the outside x.x.x.x port 80 mapped also to a dmz address v.v.v.v port 83 when x.x.x.x is taken down to display a slash page for temporary outages. I would only have one rule active at a time. Any way to do this? I disabled the real rule and tried to add the temp rule but the ASA will not let me.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
eddie.mitchell@... Thu, 02/19/2009 - 16:59
User Badges:
  • Silver, 250 points or more

Can't you just paste in a 'no static ...' on the real entry while simultaneously pasting in the temporary static entry? Then just reverse the process when you're ready to switch back. Obviously you'd also have to add a corresponding ACE for the alternate destination port.

rgreville666 Fri, 02/20/2009 - 02:29
User Badges:

You will also need to clear the xlate table "clear xlate" Please note this command will tear down all xlates, you should use the command with a specific global address.

Actions

This Discussion