pix 515e natting to inside host

Answered Question
Feb 9th, 2010
User Badges:

i want to nat public ip to a host on local network.

i want to give http(web) access to this host from outside.

can i do this from ASDM?

Correct Answer by JORGE RODRIGUEZ about 7 years 4 months ago

Sure you can do it in asdm that's why is there for ,  try to get use to  doing in it through pix  command line .


Assume server IP is  10.10.10.1 and Public IP 20.20.20.1 , for web access default HTTP port is  tcp  port  80


pix515>

pix515>enable

pix515#config t

pix515(config)#


static (inside,outside)   netmask 255.255.255.255


that is:
pix515(config)#static (inside,outside)  20.20.20.1 10.10.10.1  netmask 255.255.255.255


then inbound access rule


access-list  extended permit tcp any host eq


that is :


pix515(config)#access-list  outside_access_in extended permit tcp any host 20.20.20.1 eq 80



I have not seen ASDM example  ,  you still could use  link bellow  as reference


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080862017.shtml

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
JORGE RODRIGUEZ Tue, 02/09/2010 - 12:54
User Badges:
  • Green, 3000 points or more

Sure you can do it in asdm that's why is there for ,  try to get use to  doing in it through pix  command line .


Assume server IP is  10.10.10.1 and Public IP 20.20.20.1 , for web access default HTTP port is  tcp  port  80


pix515>

pix515>enable

pix515#config t

pix515(config)#


static (inside,outside)   netmask 255.255.255.255


that is:
pix515(config)#static (inside,outside)  20.20.20.1 10.10.10.1  netmask 255.255.255.255


then inbound access rule


access-list  extended permit tcp any host eq


that is :


pix515(config)#access-list  outside_access_in extended permit tcp any host 20.20.20.1 eq 80



I have not seen ASDM example  ,  you still could use  link bellow  as reference


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080862017.shtml

Actions

This Discussion