i would like to do NATTING to allow traffic from my outside interface, with the range of TCP and UDP port, able to perform static NAT to the server reside at inside interface.
Access Rule and Object are create for it (SNIPET)
object-group service TCP-VIDEO-CONF tcp
description TCP port enable for UC
port-object range 2326 2373
port-object range 1719 h323
object-group service UDP-VIDEO-CONF udp
description UDP port enable for UC
port-object range 5555 5599
object network video-conf-server
access-list outside_remote_access_RDP extended permit tcp any object video-conf-server TCP-VIDEO-CONF
access-list outside_remote_access_RDP extended permit udp any object video-conf-server UDP-VIDEO-CONF
i found out it only able to let me mapped only one port per entries. Can't i just do the static NAT mapped in range?
or any posibble way to NAT in range, using PAT?
Yes even ports should be translated automatically. You should be able to confirm that by running a packet-tracer.
packet-tracer input outside tcp 22.214.171.124 1234 1719 detail
Also, to NAT to the interface IP address, you do not need to create an object. Instead, you will just need to modify the NAT command as below:
nat (inside,outside) source static test1 interface service ports ports