I have a series of security cameras I have been asked to nat, but with limited public IP's I am going to have to use nat.
requirements are camera 1 using tcp inbound port 1024, camera 2 using port 1025, etc
Do I just need these static commands to make this work:
hostname (config)# static (inside,outside) tcp outside_ip 1024 insided_ip 1024 netmask 255.255.255.255
hostname (config)# static (inside,outside) tcp outside_ip 1024 insided_ip 1025 netmask 255.255.255.255
there are about 10 cameras total
fyi, I have nat configured and working for other items such as webservers, etc.
thanks in advance
Most likely that could be the issue because your configurations look good.
Please check the default gateway and see if we can somehow point it to the
ASA or route the traffic to ASA.
If you have an existing access-list on the outside interface then yes you will need to add entries to the existing acl for your cameras.
I have red that there is no diffrence between static (inside, outside) and static (outside, inside), but
as I have seen, static (outside,inside) inside IP outside IP does not work for me, maybe somebody knows why? For the same reason I don't 100% believe that the mentioned entries make a return path correct, but I might be wrong with understanding this.
Anyway, looks fine for me. What's the problem - does it not work for you? If so, have you the correct ACL applied? But yes, the syntax is static (inside,outside) outside inside