Port Forwarding in ASA 5550

Unanswered Question
Jun 24th, 2009

Hi Friend.

I have a Cisco 5550, it ASA has 2 internals IP address 172.16.6.150 and 172.16.6.152, the both ip address must have only 1 outside ip address 10.80.10.9, but the connections must be as the following. When many machines send traffic to the 10.80.10.9 into the udp ports 5060 until 5069 the traffic must finish in the 172.16.6.150, and When many machines send traffic to the 10.80.10.9 into the udp ports 32000 until 32999 the traffic must finish in the 172.16.6.152, How can I do that???, I can not make a port range with the static command. How can I solve this issue.

Regards

Rafael Barba

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
John Blakley Wed, 06/24/2009 - 12:07

Rafael,

I've never done this, but you can try this:

static (inside,outside) 10.80.10.9 access-list Range1

static (inside,outside) 10.80.10.9 access-list Range2

access-list Range1 permit udp host 172.16.6.150 any range 5060 5069

access-list Range2 permit udp host 172.16.6.152 any range 32000 32999

Here's another link:

http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Security&topic=Firewalling&CommCmd=MB?cmd=pass_through&location=outline@^1@@.2cd2616a/6#selected_message

HTH,

John

Actions

This Discussion