1841 with Advanced Security IOS - Firewall questions
I am setting up a new 1841 router for a customer. We have a few public IP addresses on one range, of which I use one for the Outside interface, and the others are mapped by static NAT to internal IP addresses on the router LAN.
This part works ok, but I cant figure out how to configure access lists or the firewall policy to allow additional traffic to access these static nat hosts. I have tried putting the whole public subnet as the destination, the individual internet address as the destination and even the private lan ip as the destination, but none of these methods allows the traffic to work
(eg. opening 3389 for Terminal Services to any of those destinations from any host does not allow terminal services to work).
Can anyone please offer some advice on what I am doing wrong and how I might get this working properly?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...