https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851405#M490474 <HTML><HEAD></HEAD><BODY><P><BR />There was an error, please check below.</P></BODY></HTML> Wed, 21 Dec 2011 20:48:55 GMT charlie.ford 2011-12-21T20:48:55Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851402#M490471 <P>Windows IIS server configured behind a Cisco ASA 5540 listening on port 443 currently. Access-list and static translation configured. I have been ask to redirect all port 80 calls to port 443 for this web site only at the firewall. I have suggested moving it behind our content switch with negative results. Can we do this at the firewall level? If no, then a definitve answer would solve my problem. If yes, some suggestions on how to accomplish the redirect for a single site. 8.2.4 is current code. More info if you need!</P> Mon, 11 Mar 2019 22:04:55 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851402#M490471 charlie.ford 2019-03-11T22:04:55Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851403#M490472 <HTML><HEAD></HEAD><BODY><P>Hello Charlie,</P><P></P><P>Of course you can do this on your ASA.</P><P></P><P>Lets say the web-server ip addres is 192.168.2.11 and will be natted to 2.2.2.2.</P><P></P><P>So you want to redirect all traffic hitting 2.2.2.2 on port 80 to port 443 on 192.168.2.11.</P><P></P><P>Here is the configuration you need:</P><P></P><P>static (inside,outside) tcp 2.2.2.2 80 192.168.2.11 443</P><P>access-list outside_in permit tcp any host 2.2.2.2 eq 80</P><P>access-group outside_in in interface outside</P><P></P><P>Kind regards,</P><P></P><P>Please rate helpful posts,</P><P></P><P>Julio</P></BODY></HTML> Wed, 21 Dec 2011 17:36:07 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851403#M490472 Julio Carvajal 2011-12-21T17:36:07Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851404#M490473 <HTML><HEAD></HEAD><BODY><P> Let me rephrase this. The web site must allow port 80 and port 443 at the edge. </P><P></P><P>User "A' uses http and user "B" uses https, both users need to access port 443 on the IIS server within the network.</P><P>The access-list is would allow both 80 and 443 through but can we direct all calls to 443 no matter if they are http or https?</P></BODY></HTML> Wed, 21 Dec 2011 20:44:10 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851404#M490473 charlie.ford 2011-12-21T20:44:10Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851405#M490474 <HTML><HEAD></HEAD><BODY><P><BR />There was an error, please check below.</P></BODY></HTML> Wed, 21 Dec 2011 20:48:55 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851405#M490474 charlie.ford 2011-12-21T20:48:55Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851406#M490476 <HTML><HEAD></HEAD><BODY><P>Hello Charlie,</P><P></P><P>Got it!!!</P><P></P><P>Here is what you need:</P><P></P><P>access-list test permit tcp host 192.168.2.11 eq 443 any</P><P>static (inside,outside) tcp 2.2.2.2 443 192.168.2.11 443</P><P>static (inside,outside) tcp 2.2.2.2 80 access-list test</P><P>access-list outside_in permit tcp any host 2.2.2.2 eq 80</P><P>access-list outside_in permit tcp any host 2.2.2.2 eq 443</P><P>access-group outside_in in interface outside</P><P></P><P> Please rate helpful posts.</P><P></P><P>Julio</P></BODY></HTML> Wed, 21 Dec 2011 20:49:53 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851406#M490476 Julio Carvajal 2011-12-21T20:49:53Z https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851407#M490478 <P></P> <P>Hello All,</P> <P></P> <P>Please can someone help me to write this NAT in a format that&nbsp;ASA Version 9.1(2) understands</P> <P></P> <P><SPAN>static (inside,outside) tcp 2.2.2.2 80 192.168.2.11 443</SPAN></P> <P></P> <P>BR,</P> <P></P> <P>Thanks&nbsp;</P> Fri, 21 Oct 2016 15:21:11 GMT https://community.cisco.com/t5/network-security/port-80-redirect-to-https/m-p/1851407#M490478 bashiru.bayonle 2016-10-21T15:21:11Z