allow port forwarding between port 100 to 1500 on ASA 5510?

rechard_hk · ‎08-30-2010

Dear all,

I would like to allow port forwarding on ASA 5510 between port 100 to 1500, but i don't know which command that allow allow of port?

if only one port i can do like

static (inside,outside) tcp interface 25 192.168.1.13 25 netmask 255.255.255.255

but i want to allow start from port 100 to 1500( i mean that 100,101,102,1003----1498,1499,1500)

How can we do on thies?

Best Regards,

Rechard

Federico Coto Fajardo · ‎08-31-2010

Hi,

Port forwarding will allow to redirect a connection from one port to another (single port).

So, you can have multiple statements for multiple ports.

But if you're looking for a ''range'' option, there's no such thing.

You either redirect based on multiple entries (one for each port) or use another IP address that you can statically NAT.

Federico.

Nagaraja Thanthry · ‎08-31-2010

Hello,

If you want to forward a whole range of ports from outside to inside,

upgrade the code to 8.3. In 8.3, you can forward a range of ports from

outside to inside.

object network test1

host 10.1.1.1

object network test2

host 100.1.1.1

object service ports

service tcp source range 100 1500

nat (inside,outside) source static test1 test2 service ports ports

Hope this helps.

Regards,

NT