Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA 5510 - More than 1 public IP

Hello!

I got a little problem with our ASA 5510. Since last week we got 6 public ip?s from our ISP. Now my boss wants me to configure our ASA with these ip?s.

IP xxx.xxx.xxx.xxx should redirect the port 443 to a spezified server in our DMZ

IP yyy.yyy.yyy.yyy should redirect the port 25 to our mail server

IP zzz.zzz.zzz.zzz should redirect the port 443 to another server in our DMZ

Is this possible, and are there any documents about the configuration i have to do.

Thanks for your help.

Greetings

Timo

3 REPLIES
Green

Re: ASA 5510 - More than 1 public IP

Sure it's possible...

static (DMZ,outside) xxx.xxx.xx.xxx netmask 255.255.255.255

static (inside,outside) yyy.yyy.yyy.yyy netmask 255.255.255.255

static (DMZ,outside) zzz.zzz.zzz.zzz netmask 255.255.255.255

also need to allow ports in your access-list on outside interface

access-list extended permit tcp any host xxx.xxx.xxx.xxx eq 443

access-list extended permit tcp any host yyy.yyy.yyy.yyy eq 25

access-list extended permit tcp any host zzz.zzz.zzz.zzz eq 443

access-group in interface outside

Community Member

Re: ASA 5510 - More than 1 public IP

Wow, thanks for your fast reply.

And how is it possible to define the ip adresses on the outside interface. I think this should be something like:

ip adress abc.def.ghi.jkl 255.255.255.248

Timo

Green

Re: ASA 5510 - More than 1 public IP

Yes,

config t

interface e0/0 (or whatever interface it is)

ip addr

please rate if these help

162
Views
5
Helpful
3
Replies
CreatePlease to create content