Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
332
Views
0
Helpful
2
Replies

Port forwarding

burleyman
Level 8
Level 8

‎10-14-2014 10:34 AM - edited ‎03-11-2019 09:55 PM

I have an ASA 5510 running 8.4(4)1 here is what I am trying to accomplish.

Setup.....

internet --> ASA ---> core switch and connected to core switch is a Meraki MX60 that will be a VPN concentrator for some Meraki Z1's

 

What I need to setup is port forwarding that will take traffic from the outside on port 25000 and send it to the Meraki MX 60 that has an IP address of 10.2.3.134.

Let's say the outside interface of the ASA is 208.208.208.194

 

Here is what I think I need to do......

object network host Meraki_MX_VPN
 nat (inside, outside) dynamic 10.2.3.134 service tcp 25000


access-list outside_access permit tcp any host Meraki_MX_VPN eq 25000

 

access-group outside_access interface outside

 

Would this accomplish what I need?

 

Mike

 

Labels:
0 Helpful
2 Replies 2

burleyman
Level 8
Level 8

‎10-14-2014 11:43 AM

Well looks like what I thought would work is wrong.

need help with what I need to do.

 

Mike

0 Helpful

david-swope
Level 1
Level 1

‎10-14-2014 11:56 AM

Some of your syntax was off but you want to use a public IP to present the Meraki to the Internet to allow access in, then NAT from that outside to the internal IP

 

object network Meraki_MX_VPN_ExtIP

 host x.x.x.x

 

object network Meraki_MX_VPN

 host 10.2.3.134

 nat (inside,outside) static Meraki_MX_VPN_ExtIP service tcp 25000 25000

 

access-list outside_access_in permit tcp any object Meraki_MX_VPN eq 25000

access-group outside_access_in in interface outside

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card