I am simply trying to grant RDP access from the outside Internet to an internal host -- 10.0.11.254 -- on the inside-2 network. The config below is edited, but I think I have all the relevant pieces in there.
Thanks for taking a look!
: Written by enable_15 at 20:17:55.312 UTC Wed Jul 11 2012
ASA Version 8.2(1)
name 18.104.22.168 WAN-IP
ip address 10.0.3.2 255.255.255.0
ip address WAN-IP 255.255.255.248
ip address 10.0.11.2 255.255.255.0
switchport access vlan 2
switchport access vlan 3
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group service rdp tcp
description for port 3389
port-object eq 3389
access-list outside_rdp_in extended permit tcp any interface outside eq 3389
Yes, there are several LAN-to-LAN VPN tunnels. I cut those out of the posted config because I thought it wasn't relevant and it has a lot of public IPs + other revealing info.
I can edit and post it if you feel that it would be helpful.
I have some suspicion that the RDP request from outside is not even getting to the ASA. There is a "gateway" from our cable internet provider in front of the ASA, which might be doing some filtering. I will check that.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :