Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Cisco ASA Port Foward Question

My client has 1 public IP. They already have a port forward for HTTPS for Exchange. They also want to allow access to another HTTPS website on a different server. My question is ...is it possible to have 2 internal websites on different servers 10.0.0.9 and 10.0.0.10 (HTTPS) with one Public IP? How would I write that ACL??

 

Thanks

Nick

5 REPLIES

You can only port-forward

You can only port-forward external port 443 to one internal IP address.  You could use a different external port, say 4443 and direct it towards your second server at port 443, but that would require end-user education to include the port in their URL.

Community Member

So I now have a second public

So I now have a second public IP that I can use for the other webserver. How do I add that to the ASA config? I have never done that.

 

Thanks

What version of code is your

What version of code is your ASA running?
Community Member

8.2 (5)

8.2 (5)

Assuming your interfaces are

Assuming your interfaces are named inside and outside and your public ip is 1.2.3.4 it would be static (inside,outside) tcp 1.2.3.4 443 10.0.0.10 443 netmask 255.255.255.255 Then permit tcp any host 1.2.3.4 eq 443 on your outside access list.
60
Views
5
Helpful
5
Replies
CreatePlease to create content