Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2648
Views
0
Helpful
2
Replies

Cisco ASA Port Forwarding / DHCP IP Address reservation

Go to solution
markangelolim
Level 1
Level 1

‎10-19-2014 08:25 AM - edited ‎02-21-2020 05:18 AM

Hi Everyone,

need help on my installation of ASA 5512-x, my first concern is i'm configuring port forwarding using the public servers module under Configuration>Firewall>Public Servers when i add a Public Server i will indicate the following:

Private Interface : Inside

Private IP address: 192.168.1.x

Private Service: 3389

Public Interface: Outside

Public IP Address: "example: 210.4.100.1"

Public Service 3380

now my problem is after putting all the information when i click OK it will prompt me this error "The public address cannot be the same as the public interface address". I can use another public IP address but what if i only have one public IP? and what if changing the declared public IP address is not an option? I tried creating Port Forwarding using the static NAT but it just prompt me the same error. Is there any way i can solve this without changing the public IP address?

my second concern is does ASA 5512-x can support DHCP IP address reservation through MAC Address? i've been reading through other forums and it seems that this feature is not supported, i just want to confirm maybe 5512-x can support this "simple feature". Thanks in advance for the reply.   

Preview file
42 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jay Johnston
Cisco Employee
Cisco Employee

‎02-20-2020 08:17 AM

The DHCP reservation feature is now supported on ASA in version 9.13(1) and later

Example:

Magnus-5506-Desk# sh run dhcpd
dhcpd dns 192.168.1.22
dhcpd domain cisco.com
dhcpd option 4 ip 172.18.124.1
!
dhcpd address 192.168.100.100-192.168.100.200 inside
dhcpd enable inside
dhcpd reserve-address 192.168.100.199 ecb5.fa0f.988b inside
!
Magnus-5506-Desk#

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎11-06-2014 07:38 AM

Hi there,

I can't help you with the ASDM error but what you need can be acheived with NAT and the CLI:

 

!

object network rdp_server
host 192.168.1.x

!

object network rdp_server
 nat (inside,outside) static interface service tcp 3389 3380

!

 

cheers,

Seb.

0 Helpful

Go to solution
Jay Johnston
Cisco Employee
Cisco Employee

‎02-20-2020 08:17 AM

The DHCP reservation feature is now supported on ASA in version 9.13(1) and later

Example:

Magnus-5506-Desk# sh run dhcpd
dhcpd dns 192.168.1.22
dhcpd domain cisco.com
dhcpd option 4 ip 172.18.124.1
!
dhcpd address 192.168.100.100-192.168.100.200 inside
dhcpd enable inside
dhcpd reserve-address 192.168.100.199 ecb5.fa0f.988b inside
!
Magnus-5506-Desk#

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card