11-04-2010 07:21 AM - edited 03-11-2019 12:04 PM
Hello -
I have IOS firewall configured on a 2800 and I am attempting to perform a port forward
to a specific server that will terminate a VPN SSL connection.
What command do I use to create this capability? I am using 12.4(25d) ADVSECURITYK9-M
Thanks everyone,
Lou
11-04-2010 07:51 AM
This will create the NAT translation-
ip nat inside source static tcp 192.168.1.50 443 75.50.95.72 443 extendable
You'll also need the rule in your ACL.
11-04-2010 08:01 AM
Thanks Collin
I had already created the following ACL ...
access-list 111 permit tcp any 192.168.1.50 0.0.0.0 eq 443
11-04-2010 11:22 AM
If the ACL is applied on an the outside interface you would need to open traffic to the global ip
access-list 111 permit tcp any 75.50....* eq 443
I hope it helps.
PK
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: