Solved: Re: Routing SSL Traffic Based on Port

conversyschris · ‎04-02-2007

Hello,

Basically my current setup is that I have a group of webservers and database servers behind my ASA firewall, I am looking to allow SSL for specific actions through the website.

I was curious if anyone had a configuration example for something like this:

I would like all traffic from IP (10.10.100.1) HTTP (Port 80) to route to Server A (10.10.10.10) and all traffic from (10.10.100.1) that is going to HTTPS (Port 443) to route to server B (10.10.10.11)

I couldnt find any specific examples in the Command Line Configuration guide, just wondering if someone could provide me an example of what the config would look like.

Thanks in advance,

Chris

gecko2207 · ‎04-02-2007

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

View solution in original post

gecko2207 · ‎04-02-2007

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

conversyschris · ‎04-02-2007

Yep thats it, I know it was a very generic pretty simple question, but I had spent some time digging around and couldn't find it, thanks for the help