Re: Port Forwarding issue on cisco asa from outside to inside

mohammed abdul naveed · ‎12-25-2018

Hi friends, I am facing issue with port forwarding from outside to inside.

we have LDAP server on the inside interface, we want to allow LDAP traffic to pass through outside to inside, after we applied below configuration still we cannot access LDAP server. Your suggestion, please.

Running configuration can be seen in attachment and the configuraiton which i applied.

object-group network LDAP_DC5_ACCESS

description DC5_PUBLIC_ACCESS_IP

network-object 99.132.180.0 255.255.255.0

network-object 99.132.181.0 255.255.255.0

network-object 99.132.182.0 255.255.255.0

network-object 99.132.183.0 255.255.255.0

network-object 99.183.28.0 255.255.252.0

network-object 62.209.50.0 255.255.255.0

network-object 62.209.51.0 255.255.255.0

network-object 81.207.212.0 255.255.255.0

network-object 81.207.213.0 255.255.255.0

network-object 81.209.104.0 255.255.255.0

access-group outside_access_in in interface outside

access-list outside_access_in extended permit tcp object-group LDAP_DC5_ACCESS host 10.10.14.12 eq ldap

access-list outside_access_in extended permit tcp object-group LDAP_DC5_ACCESS host 10.10.14.12 eq ldaps

access-group outside_access_in in interface outside

object network DC5

host 10.10.14.12

nat (inside,outside) static interface service tcp ldap ldap

Pawan Raut · ‎12-25-2018

Can you check below and post the output of the commands from ASA

1) sh nat de

2) packet-tracer input inside tcp <source IP address> 1024 <outside interface IP address> ldap det