topic Assuming your interfaces are in Network Security https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483706#M267526 Assuming your interfaces are named inside and outside and your public ip is 1.2.3.4 it would be static (inside,outside) tcp 1.2.3.4 443 10.0.0.10 443 netmask 255.255.255.255 Then permit tcp any host 1.2.3.4 eq 443 on your outside access list. Thu, 17 Apr 2014 21:49:50 GMT jj27 2014-04-17T21:49:50Z Cisco ASA Port Foward Question https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483701#M267515 <P>My client has 1 public IP. They already have a port forward for HTTPS for Exchange. They also want to allow access to another HTTPS website on a different server. My question is ...is it possible to have 2 internal websites on different servers 10.0.0.9 and 10.0.0.10 (HTTPS) with one Public IP? How would I write that ACL??</P><P>&nbsp;</P><P>Thanks</P><P>Nick</P> Tue, 12 Mar 2019 04:04:52 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483701#M267515 nickbarber 2019-03-12T04:04:52Z You can only port-forward https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483702#M267516 <P>You can only port-forward external port 443 to one internal IP address. &nbsp;You could use a different external port, say 4443 and direct it towards your second server at port 443, but that would require end-user education to include the port in their URL.</P> Tue, 15 Apr 2014 17:36:36 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483702#M267516 jj27 2014-04-15T17:36:36Z So I now have a second public https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483703#M267517 <P>So I now have a second public IP that I can use for the other webserver. How do I add that to the ASA config? I have never done that.</P><P>&nbsp;</P><P>Thanks</P> Thu, 17 Apr 2014 21:35:09 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483703#M267517 nickbarber 2014-04-17T21:35:09Z What version of code is your https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483704#M267522 What version of code is your ASA running? Thu, 17 Apr 2014 21:41:52 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483704#M267522 jj27 2014-04-17T21:41:52Z 8.2 (5) https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483705#M267524 <P>8.2 (5)</P> Thu, 17 Apr 2014 21:42:53 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483705#M267524 nickbarber 2014-04-17T21:42:53Z Assuming your interfaces are https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483706#M267526 Assuming your interfaces are named inside and outside and your public ip is 1.2.3.4 it would be static (inside,outside) tcp 1.2.3.4 443 10.0.0.10 443 netmask 255.255.255.255 Then permit tcp any host 1.2.3.4 eq 443 on your outside access list. Thu, 17 Apr 2014 21:49:50 GMT https://community.cisco.com/t5/network-security/cisco-asa-port-foward-question/m-p/2483706#M267526 jj27 2014-04-17T21:49:50Z