Cisco ASA 5505 port forward to server proxy ( no wccp )

Unanswered Question
Jun 10th, 2009

Hi all,

I've read few old post about the redirect of 80 443 to a server-proxy with wccp. This solution is the only to forward port ? I think exists a more simple solution to forward a port, does it exists ?

For example how could I do to forward the 22 port to another host in my inside-lan to 222 ?

Thanks to all for reply.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ldardon Tue, 06/16/2009 - 13:00

To allow access to particular TCP port forwarding applications for a specific user or group policy, use the listname you create here with the port-forward command in webvpn mode. The security appliance does not support the Microsoft Outlook Exchange (MAPI) proxy. Neither port forwarding nor the smart tunnel feature that provides application access through a clientless SSL VPN session supports MAPI. For Microsoft Outlook Exchange communication using the MAPI protocol, remote users must use AnyConnect.

seibertmedia Wed, 09/30/2009 - 03:27


do you mean, portforwarding from external ip to an internal server behind nat?

Then, you can do a static NAT with PAT for the server

access-list internal_nat_static_3 extended permit tcp host $internal-host eq $port any

static ($internal-interface,$external-interface) tcp $external-ip $port access-list internal_nat_static_3

if you want to redirect packets from internal ip's you need policy based routing, which isn't supported by the asa.


This Discussion