Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Nating on a specific port

Hi Everyone,

Is it possible to NAT traffic on an outside interface to an inside interface only if it comes in on port 48610?

For example, I have traffic from 192.168.1.0/24 hitting my outside interface and if its on port 48610 I wan to nat it to 10.10.101.1 and retain the port number?

Many thanks in advance,

Dan

1 REPLY
Gold

Re: Nating on a specific port

static (inside,outside) tcp 48610 10.10.101.1 48610 netmask 255.255.255.255 0 0

access-list 100 permit tcp any eq 48610

access-group 100 in interface outside

clear xlate

the command "clear xlate" is required as it forces the pix to fresh ip address translation.

with the inbound acl, you may further restrict to:

access-list 100 permit tcp 192.168.1.0 255.255.255.0 eq 48610

103
Views
0
Helpful
1
Replies
CreatePlease to create content