port forwarding with route map

Unanswered Question
Jun 15th, 2010

Hi All,

I have a router 1841 connected with ADSL and behind this router connected ASA5520 with private IP Adresse.

the router ADSL is configured with vpn site-to-site with 3 sites:

i want to configure vpn remote client with ASA5520,

to do this i want to forward udp/500 and udp/4500 comming to router public IP to ASA private ip.

the problem is i want to forward request comming from all Public IP except those connected with router with vpn site-to-site.

i think it's possible with route map, but i don't know how to configure it.

can you help me plz, many thanks.

yoyo

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
yoyo_the_king Wed, 06/16/2010 - 07:45

Hi,

thta's what i did,

i creat an ACL

access-list 120 deny   ip host A.A.A.A any log
access-list 120 deny   ip host B.B.B.B any log
access-list 120 deny   ip host C.C.C.C any log
access-list 120 deny   ip any host A.A.A.A log
access-list 120 deny   ip any host B.B.B.B log
access-list 120 deny   ip any host C.C.C.C log
access-list 120 permit ip any any log

and i create a route map

route-map map-forward permit 1
match ip address 120

and i create a nat with

ip nat inside source static udp (asa private IP) 500 (ADSL public IP) 500 route-map map-forward extendable

the problem that the acl match the last one any any i don't know why.

any help

yoyo_the_king Thu, 06/17/2010 - 03:16

I add ip nat inside under vlan2

but still not wroking, just i add the command:

ip nat inside source static udp (asa private IP) 500 (ADSL public IP) 500 route-map map-forward extendable

i lose connexion with all site connected with vpn site-to-site with router.

Actions

This Discussion