Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ASA 5505 pppoe and NAT

Hi all.

I'm not new to firewall config but acutally is the first time I need to configure a PPPoE on a Cisco ASA.

IP and def-route will be received via DHCP but I already know which IP will be assigned. I will have only 1 IP public IP address.

The network is really basic: inside and outside, no DMZ. The use a server (internal) that will be published on the internet with different services.

Now my question(s) is pretty simple, does this configuration will work?

interface Ethernet0/0
 switchport access vlan 2
!
interface Ethernet0/2
!
interface Vlan1
 nameif inside
 security-level 100
 ip address 10.1.1.10 255.255.255.0
!
interface Vlan2
 nameif outside
 security-level 0
 pppoe client vpdn group internet
 ip address pppoe setroute

!

vpdn group internet request dialout pppoe
vpdn group internet localname id@domain.x
vpdn group internet ppp authentication chap
vpdn username id@domain.x password <mypass> store-local

dhcpd auto_config outside

object network Outside_IP
 host <my_PUBLIC_ip>
object network MyInternalServer
 nat (inside,outside) static Outside_IP
!
nat (inside,outside) after-auto source dynamic any interface

access-group inside_access_in in interface inside
access-group outside_access in interface outside
 

object-group service Services_myServices tcp
 port-object eq 26675
 port-object eq 3389
 port-object range 5678 5679
 port-object eq 5721
 port-object eq 990
 port-object eq 999
 port-object eq https


access-list inside_access_in extended permit object-group Permit_Surfing 10.1.1.0 255.255.255.0 any log
access-list outside_access extended permit tcp any4 object MyInternalServer object-group Services_MyServices log
 


Thanks for your help
 

1 REPLY
Bronze

Hello, Maybe the reply is

Hello,

 

Maybe the reply is kind of late, but I dont see why it wouldn't work.

 

Regards,

 

Felipe.

 

 

Remember to rate useful posts.

119
Views
0
Helpful
1
Replies
CreatePlease to create content