Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Help me with NAT in ASA 8.4.2

Hello..

I am trying to port forwarding Exchange 2010 OWA using ASA5505, wherever I used object NAT or Twice NAT it just doesn't work.... here is my config:

access-list outside-access remark "Exchange Server Access Rules"

access-list outside-access extended permit tcp any host <public x.x.x.11> eq smtp

access-list outside-access extended permit tcp any host <public x.x.x.11> eq https

object network exchange-smtp

host <private x.x.x.8>

nat (dmz,outside) static <public x.x.x.11> service tcp smtp smtp

exit

object network exchange-https

host <private x.x.x8>

nat (dmz,outside) static <public x.x.x.11> service tcp https https

exit

note that i use public ip  <public x.x.x.9> on the outside interface for PAT, so all hosts in the same private can access internet

thax

Everyone's tags (4)
1 REPLY

Help me with NAT in ASA 8.4.2

just figured it out...the soultion was simple after doing a packet tracer which is give me a packet drop due to acl rules I just reconfigured my acl to be like this:

access-list outside-access remark "Exchange Server Access Rules"

access-list outside-access extended permit tcp any host eq smtp

access-list outside-access extended permit tcp any host eq https

and it worked like charm..

546
Views
0
Helpful
1
Replies
CreatePlease to create content