Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

setting NAT public IP address to local IP address

Good Morning,

Setting up public ip address on cisco asa5505 to allow any public ip addressusing 65.10.10.1  to conect to internal ip address.

65.10.10.1 nat to 192.168.10.1

However there is an implicit rule that is blocking the the external IP to connect.

How to resolve, thanks M

1 REPLY

Re: setting NAT public IP address to local IP address

Hi,

To be able to NAT

65.10.10.1 nat to 192.168.10.1

You should have the following rule:

static (in,out) 65.10.10.1 192.168.10.1

Assuming that the 192.168.10.1 is on the inside and 65.10.10.1 will be translated to the outside.

To permit the incoming traffic, there should be an ACL.

access-list outside permit ip any host 65.10.10.1

access-group outside in interface outside

The above ACL can be modified to permit only the ports needed.

Federico.

389
Views
0
Helpful
1
Replies