I have a Symantec Gateway (SG) appliance that I'm converting from to an ASA 5550. I have a slight problem, and I don't think there's a workaround.
The SG allows for us to create a rule that allows external traffic in, and then it will forward this traffic to individual hosts. The individual hosts don't need public addresses to forward to.
Allow public address into port 3330 and forward to private host 192.168.3.20.
I don't believe I can do this with the ASA without having a public address assigned to 192.168.3.20 and then doing translation based on that:
static (inside, outside) public ip 192.168.3.20 netmask 255.255.255.255
Is there a way to do it other than this?