https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109836#M395009 <P>Hi guys,</P><P>Spent a lot of time what might be the issue with this one. I am setting up an ASA 5550 8.4 and asdm 6.4. Last thing I am missing is to get the static nat rule done for https. Done it with asdm and cli and always end up with "error: nat unable to reserve the port". Looked around the Net so far and changed the http enable port to 4433.</P><P></P><P>Didn't help so far and ASDM access is only configured for inside and mgmt port. Disabled under RA VPN all checkboxes in clientless ssl and any connection profiles since IKEv1 is used for vpn access.</P><P></P><P>ACL is done for the publishing.</P><P></P><P>The reason to publish 443 is to enable OWA remote login for an Exchange server. Has anyone a hint what might the problem, which prevents the nat from reserving the port?</P><P></P><P>I also have only 1 public IP for use</P><P></P><P>Thanks in advance</P><P></P><P></P><P></P><P>SOLUTION: you also have to change the port settings in "anyconnect connection profiles" and "clientless SSL bla" to something else. Even if it is all unchecked the asa has a binding for the ports</P> Tue, 12 Mar 2019 00:29:24 GMT DavidFeike 2019-03-12T00:29:24Z https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109836#M395009 <P>Hi guys,</P><P>Spent a lot of time what might be the issue with this one. I am setting up an ASA 5550 8.4 and asdm 6.4. Last thing I am missing is to get the static nat rule done for https. Done it with asdm and cli and always end up with "error: nat unable to reserve the port". Looked around the Net so far and changed the http enable port to 4433.</P><P></P><P>Didn't help so far and ASDM access is only configured for inside and mgmt port. Disabled under RA VPN all checkboxes in clientless ssl and any connection profiles since IKEv1 is used for vpn access.</P><P></P><P>ACL is done for the publishing.</P><P></P><P>The reason to publish 443 is to enable OWA remote login for an Exchange server. Has anyone a hint what might the problem, which prevents the nat from reserving the port?</P><P></P><P>I also have only 1 public IP for use</P><P></P><P>Thanks in advance</P><P></P><P></P><P></P><P>SOLUTION: you also have to change the port settings in "anyconnect connection profiles" and "clientless SSL bla" to something else. Even if it is all unchecked the asa has a binding for the ports</P> Tue, 12 Mar 2019 00:29:24 GMT https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109836#M395009 DavidFeike 2019-03-12T00:29:24Z https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109837#M395010 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Check this post on the same forums</P><P></P><P><A _jive_internal="true" href="https://community.cisco.com/thread/2094321" rel="nofollow">https://supportforums.cisco.com/thread/2094321</A></P><P></P><P>This will affect your ASDM connections though. Do you use the command line interface to configure the ASA also?</P><P></P><P>- Jouni</P></BODY></HTML> Wed, 28 Nov 2012 14:26:06 GMT https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109837#M395010 Jouni Forss 2012-11-28T14:26:06Z https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109838#M395011 <HTML><HEAD></HEAD><BODY><P>thanks, but had already done this <SPAN __jive_emoticon_name="happy" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/happy.gif"></SPAN> found the solution and added it in the OP</P></BODY></HTML> Wed, 28 Nov 2012 15:24:30 GMT https://community.cisco.com/t5/network-security/need-help-with-port-forwarding-for-https/m-p/2109838#M395011 DavidFeike 2012-11-28T15:24:30Z