Opening A Port To Server On LAN & Allowing Port Forwarding
I have been tasked with configuring some port access for a server on my internal LAN. The Vendor provided me with 2 IP's on their end that I need to allow Port 1081 access to my server on my LAN.
We use an ASA 5520(Ver.8.0) with ASDM 6.0(3). I was wondering, to accomplish this, do I need to create a 1-to-1 NAT translation so that this server on the inside can see traffic destined for it from the outside? Or can I simply forward any traffic from those to IP's to my server coming over Port 1081?
Re: Opening A Port To Server On LAN & Allowing Port Forwarding
Andrew, I like the port-forwarding option as well. Would it be too much to ask for more specific information? Keep in mind I am only experienced in ASDM and I have never managed a firewall via command line. Or maybe if I explain your solution out, you can correct me where I'm wrong. I currently have 4 interfaces configured on my ASA. outside, inside, DMZ, and a dedicated interface for our police department. The server resides on a LAN segment on the "Inside" interface. The "Outside" interface is where the ISP is connected.
Step 1. Create an incoming Access Rule on my firewall's outside interface that allows TCP port 1081 traffic from "vendor's IP addresses".
Step 2. I imagine this is where I set up the port-forwarding to my internal server (If possible, I require assistance with this).
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...