Hi - I have a ASA which I will post the config down below.
Basically everything is working as normal however I have just been told we have another server at host 10.10.1.3 which needs to be accessed over the external IP through RDP on port 3399 which then redirects to Port 3389 if that makes sense.
So currently I have the ASA internal IP 10.10.1.1 and outside let say 22.214.171.124 - I have a Server at host 10.10.1.2 which works perfect for RDP on port 3389 when I connect through 126.96.36.199 but since I now need to RDP to a second server 10.10.1.3 through 188.8.131.52 I need to be able to tell the user to connect to 184.108.40.206:3399 which then will connect to 10.10.1.3:3389 and that would leave the normal 220.127.116.11 connecting to 10.10.1.2 on the normal 3389
Hope that makes sense - I have replaced a old DLINK which basically redirected anything on 18.104.22.168:3399 to 10.10.1.3:3389
Result of the command: "sh conf"
: ! ASA Version 8.4(2) ! hostname asa03
names ! interface Ethernet0/0 switchport access vlan 2 ! interface Ethernet0/1 ! interface Ethernet0/2 ! interface Ethernet0/3 ! interface Ethernet0/4 ! interface Ethernet0/5 ! interface Ethernet0/6 ! interface Ethernet0/7 ! interface Vlan1 nameif webserve security-level 100 ip address 10.10.1.1 255.255.255.0 ! interface Vlan2 nameif outside security-level 0 ip address 22.214.171.124 255.255.255.248 ! boot system disk0:/asa842-k8.bin ftp mode passive clock timezone EST -5 clock summer-time EDT recurring dns domain-lookup outside dns server-group DefaultDNS name-server 126.96.36.199 name-server 188.8.131.52 object network SigmaCareTest1 host 184.108.40.206 description SigmaCareTest1 object network SigmaCareTest2 host 220.127.116.11 description SigmaCareTest2 object network a-10.10.1.2 host 10.10.1.2 object service a-http service tcp source eq www object service tcp-80 service tcp source eq www object network InsideNat subnet 0.0.0.0 0.0.0.0 object network WebServeNat subnet 0.0.0.0 0.0.0.0 object service RDP-3389 service tcp source eq 3389 object network Testrdp host 18.104.22.168 object service ftp-20 service tcp source eq ftp-data object service ftp-21 service tcp source eq ftp object network ser-rdp host 10.10.1.3 object service rdp-3399 service tcp source eq 3399 object-group network obj_any object-group network DM_INLINE_NETWORK_2 network-object object Testrdp
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...