Port forwarding once again

Discussion in 'Cisco' started by 02dag, Oct 3, 2009.

  1. 02dag

    02dag Guest

    Just wanted to add another example of how to set up port forwarding on
    a cisco asa 5505.

    This is how I managed to get it working.

    This is an example where the inside network is 192.168.1.0 with
    netmask 255.255.255.0. The cisco asa has an ip address of 192.168.1.1.

    I am doing this by connecting to the ASA with the console cable using
    the terminal emulator ZOC pro 6.14 from emtec software. bitrate is
    9600 8N1.

    ciscoasa> ena
    ciscoasa# conf t

    First you set up some NAT rules. This is a rdp rule to a server on the
    inside net with an ip address of 192.168.1.13

    ciscoasa(config)# static (inside,outside) tcp interface 3389
    192.168.1.13 3389 netmask 255.255.255.255

    Then you can set up a http rule to the same server

    ciscoasa(config)# static (inside,outside) tcp interface 80
    192.168.1.13 80 netmask 255.255.255.255

    Ok we now have two rules, to make them work set up some access rules

    ciscoasa(config)# access-list outside_access_in extended permit tcp
    any any eq 3389
    ciscoasa(config)# access-list outside_access_in extended permit tcp
    any any eq http

    Then setup the outbound accesslist rule

    ciscoasa(config)# access-list inside_nat0_outbound extended permit ip
    192.168.1.0 255.255.255.0 192.168.1.0 255.255.255.0

    Then at last set up the exempt NAT rule

    ciscoasa(config)# nat (inside) 0 access-list inside_nat0_outbound

    Save the configuration

    ciscoasa(config)# wr mem

    Then do a reload

    ciscoasa(config)# reload

    I am not saying that this is the correct cisco way to do it, but this
    is how I got it to work. good luck with your cisco ASA 5505

    Dag Kl├Žstad
    02dag, Oct 3, 2009
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Silverstrand

    Birthday time once again!

    Silverstrand, Jul 7, 2005, in forum: The Lounge
    Replies:
    6
    Views:
    1,489
    PUTALE
    Jul 10, 2005
  2. Jason Smith

    Port Forwarding Issue again

    Jason Smith, Jan 13, 2005, in forum: Cisco
    Replies:
    2
    Views:
    1,638
    Walter Roberson
    Jan 17, 2005
  3. amy
    Replies:
    8
    Views:
    599
  4. Replies:
    7
    Views:
    1,978
    Crownfield
    Mar 20, 2005
  5. ToyalP2
    Replies:
    7
    Views:
    1,515
    ToyalP2
    Jan 7, 2008
Loading...

Share This Page