Port Forwarding in ASA 5550

Unanswered Question
Jun 24th, 2009
User Badges:

Hi Friend.


I have a Cisco 5550, it ASA has 2 internals IP address 172.16.6.150 and 172.16.6.152, the both ip address must have only 1 outside ip address 10.80.10.9, but the connections must be as the following. When many machines send traffic to the 10.80.10.9 into the udp ports 5060 until 5069 the traffic must finish in the 172.16.6.150, and When many machines send traffic to the 10.80.10.9 into the udp ports 32000 until 32999 the traffic must finish in the 172.16.6.152, How can I do that???, I can not make a port range with the static command. How can I solve this issue.


Regards

Rafael Barba

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
John Blakley Wed, 06/24/2009 - 12:07
User Badges:
  • Purple, 4500 points or more

Rafael,


I've never done this, but you can try this:


static (inside,outside) 10.80.10.9 access-list Range1


static (inside,outside) 10.80.10.9 access-list Range2


access-list Range1 permit udp host 172.16.6.150 any range 5060 5069


access-list Range2 permit udp host 172.16.6.152 any range 32000 32999



Here's another link:


http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Security&topic=Firewalling&CommCmd=MB?cmd=pass_through&location=outline@^1@@.2cd2616a/6#selected_message


HTH,

John

Actions

This Discussion