setting NAT public IP address to local IP address

Unanswered Question
May 27th, 2010
User Badges:

Good Morning,


Setting up public ip address on cisco asa5505 to allow any public ip addressusing 65.10.10.1  to conect to internal ip address.


65.10.10.1 nat to 192.168.10.1


However there is an implicit rule that is blocking the the external IP to connect.


How to resolve, thanks M

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Federico Coto F... Thu, 05/27/2010 - 03:52
User Badges:
  • Green, 3000 points or more

Hi,


To be able to NAT

65.10.10.1 nat to 192.168.10.1


You should have the following rule:


static (in,out) 65.10.10.1 192.168.10.1


Assuming that the 192.168.10.1 is on the inside and 65.10.10.1 will be translated to the outside.


To permit the incoming traffic, there should be an ACL.


access-list outside permit ip any host 65.10.10.1

access-group outside in interface outside


The above ACL can be modified to permit only the ports needed.


Federico.

Actions

This Discussion