Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4412
Views
0
Helpful
2
Replies

asa 5510 ver 8.0(2) how to setup port forwarding to server on network

arcolino11
Level 1
Level 1

‎06-01-2012 12:26 PM - edited ‎02-21-2020 04:39 AM

hello all, I have a server on my network that I would like use through the asa. example inside ip address 192.168.2.x

port 20,333,555,999 outside ip address 216.235.122.x. I searched the internet and did not find commands for it. I would like to call

the server cars server. Please help.

0 Helpful
2 Replies 2

varrao
Level 10
Level 10

‎06-01-2012 01:15 PM

Hi,

You would need this configuration:

static (inside,outside) tcp 216.235.122.x. 20 192.168.2.x 20

static (inside,outside) tcp 216.235.122.x. 333 192.168.2.x 333

static (inside,outside) tcp 216.235.122.x. 555 192.168.2.x 555

static (inside,outside) tcp 216.235.122.x. 999 192.168.2.x 999

and then open the same ports on the access-list that you have applied on the outside interface, eg:

access-list outside_access_in permit tcp any host 216.235.122.x eq 20

Here is a document for port forwarding on ASA:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00804708b4.shtml

Thanks,
Varun Rao
Security Team,
Cisco TAC

Thanks,
Varun Rao
0 Helpful

mikull.kiznozki
Level 1
Level 1
In response to varrao

‎06-02-2012 10:47 PM

you could also create network objects for each of the servers and then write the nat rules/access rules just to make it easier for you to review the access rules/nat rules and change them when required.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card