Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Routing SSL Traffic Based on Port

Hello,

Basically my current setup is that I have a group of webservers and database servers behind my ASA firewall, I am looking to allow SSL for specific actions through the website.

I was curious if anyone had a configuration example for something like this:

I would like all traffic from IP (10.10.100.1) HTTP (Port 80) to route to Server A (10.10.10.10) and all traffic from (10.10.100.1) that is going to HTTPS (Port 443) to route to server B (10.10.10.11)

I couldnt find any specific examples in the Command Line Configuration guide, just wondering if someone could provide me an example of what the config would look like.

Thanks in advance,

Chris

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: Routing SSL Traffic Based on Port

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

2 REPLIES
New Member

Re: Routing SSL Traffic Based on Port

Is this what you are looking for?

static (inside,outside) tcp 10.10.100.1 www 10.10.10.10 www netmask 255.255.255.255 0 0

static (inside,outside) tcp 10.10.100.1 https 10.10.10.11 https netmask 255.255.255.255 0 0

This should allow port 80 coming to 10.10.100.1 to go to 10.10.10.10 and port 443 to go to 10.10.10.11.

New Member

Re: Routing SSL Traffic Based on Port

Yep thats it, I know it was a very generic pretty simple question, but I had spent some time digging around and couldn't find it, thanks for the help

226
Views
0
Helpful
2
Replies