port forwarding with route map

Unanswered Question
Jun 15th, 2010
User Badges:

Hi All,


I have a router 1841 connected with ADSL and behind this router connected ASA5520 with private IP Adresse.

the router ADSL is configured with vpn site-to-site with 3 sites:


i want to configure vpn remote client with ASA5520,


to do this i want to forward udp/500 and udp/4500 comming to router public IP to ASA private ip.

the problem is i want to forward request comming from all Public IP except those connected with router with vpn site-to-site.


i think it's possible with route map, but i don't know how to configure it.


can you help me plz, many thanks.

yoyo

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
yoyo_the_king Wed, 06/16/2010 - 07:45
User Badges:

Hi,


thta's what i did,


i creat an ACL


access-list 120 deny   ip host A.A.A.A any log
access-list 120 deny   ip host B.B.B.B any log
access-list 120 deny   ip host C.C.C.C any log
access-list 120 deny   ip any host A.A.A.A log
access-list 120 deny   ip any host B.B.B.B log
access-list 120 deny   ip any host C.C.C.C log
access-list 120 permit ip any any log


and i create a route map


route-map map-forward permit 1
match ip address 120


and i create a nat with

ip nat inside source static udp (asa private IP) 500 (ADSL public IP) 500 route-map map-forward extendable


the problem that the acl match the last one any any i don't know why.


any help

yoyo_the_king Thu, 06/17/2010 - 03:16
User Badges:

I add ip nat inside under vlan2


but still not wroking, just i add the command:


ip nat inside source static udp (asa private IP) 500 (ADSL public IP) 500 route-map map-forward extendable


i lose connexion with all site connected with vpn site-to-site with router.

Actions

This Discussion