topic Iptables to ASA help in Network Security https://community.cisco.com/t5/network-security/iptables-to-asa-help/m-p/2094028#M395453 <P>I am migrating ubuntu iptables to ASA and since I am not a linux/iptables expert I am having trouble following the nat rules. Can someone hook me up and convert the following for 8.4</P><P></P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 80 -j DNAT --to 10.2.53.131 </P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 443 -j DNAT --to 10.2.53.131</P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 80 -j DNAT --to 172.28.18.68:8080</P><P>$IPTABLES -t nat -A POSTROUTING -o eth4 -d 216.68.4.101 -j SNAT --to-source 192.168.130.1 </P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 20.6.192.3 -d 216.68.4.11 -j DNAT --to 10.2.11.20</P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 20.19.241.1 -d 216.68.4.11 -j DNAT --to 10.2.11.20</P><P></P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 12.16.16.65 -d 216.68.4.6 -j DNAT --to 10.2.11.20</P><P>$IPTABLES -t nat -A POSTROUTING -o eth0 -s 10.23.11.20 -d 12.163.16.65 -j SNAT --to-source 216.68.4.6</P><P></P><P></P><P>Thanks!</P> Tue, 12 Mar 2019 00:24:52 GMT eric.lovelace 2019-03-12T00:24:52Z Iptables to ASA help https://community.cisco.com/t5/network-security/iptables-to-asa-help/m-p/2094028#M395453 <P>I am migrating ubuntu iptables to ASA and since I am not a linux/iptables expert I am having trouble following the nat rules. Can someone hook me up and convert the following for 8.4</P><P></P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 80 -j DNAT --to 10.2.53.131 </P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 443 -j DNAT --to 10.2.53.131</P><P>#$IPTABLES -t nat -A PREROUTING -i eth0 -p tcp -d 216.68.4.12 --dport 80 -j DNAT --to 172.28.18.68:8080</P><P>$IPTABLES -t nat -A POSTROUTING -o eth4 -d 216.68.4.101 -j SNAT --to-source 192.168.130.1 </P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 20.6.192.3 -d 216.68.4.11 -j DNAT --to 10.2.11.20</P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 20.19.241.1 -d 216.68.4.11 -j DNAT --to 10.2.11.20</P><P></P><P>$IPTABLES -t nat -A PREROUTING -i eth0 -s 12.16.16.65 -d 216.68.4.6 -j DNAT --to 10.2.11.20</P><P>$IPTABLES -t nat -A POSTROUTING -o eth0 -s 10.23.11.20 -d 12.163.16.65 -j SNAT --to-source 216.68.4.6</P><P></P><P></P><P>Thanks!</P> Tue, 12 Mar 2019 00:24:52 GMT https://community.cisco.com/t5/network-security/iptables-to-asa-help/m-p/2094028#M395453 eric.lovelace 2019-03-12T00:24:52Z Iptables to ASA help https://community.cisco.com/t5/network-security/iptables-to-asa-help/m-p/2094029#M395454 <HTML><HEAD></HEAD><BODY><P>Hello Eric,</P><P></P><P>I'm not a linux guy but maybe if you tell us what this lines are supuse to acomplish, we can help.</P><P></P><P>The first ones(1 to 3) seem to be port forwarding:</P><P></P><P>Traffic going to 216.68.4.12 on port 80 is tranlated to 10.2.53.131</P><P></P><P>object network obj-10.2.53.131</P><P>host 10.2.53.131</P><P>nat (inside,outside) static 216.68.4.12 service tcp 80 80</P><P></P><P>I will need more information about what the others do so we can migrate them.</P><P></P><P>Regards,</P><P></P><P>Felipe. </P></BODY></HTML> Tue, 20 Nov 2012 03:33:59 GMT https://community.cisco.com/t5/network-security/iptables-to-asa-help/m-p/2094029#M395454 lcambron 2012-11-20T03:33:59Z