×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Nating on a specific port

Unanswered Question
Oct 6th, 2005
User Badges:

Hi Everyone,


Is it possible to NAT traffic on an outside interface to an inside interface only if it comes in on port 48610?


For example, I have traffic from 192.168.1.0/24 hitting my outside interface and if its on port 48610 I wan to nat it to 10.10.101.1 and retain the port number?


Many thanks in advance,


Dan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jackko Thu, 10/06/2005 - 06:12
User Badges:
  • Gold, 750 points or more

static (inside,outside) tcp 48610 10.10.101.1 48610 netmask 255.255.255.255 0 0

access-list 100 permit tcp any eq 48610

access-group 100 in interface outside

clear xlate


the command "clear xlate" is required as it forces the pix to fresh ip address translation.


with the inbound acl, you may further restrict to:

access-list 100 permit tcp 192.168.1.0 255.255.255.0 eq 48610

Actions

This Discussion