I'm having one server with public IP x.x.x.32/29 I need to add this in my firewall asa 5520. so that from outside my network no one can access it.
I want to know how can i do this,shall I add this server directly in my network or create static nat to it and pass through firewall.
As I am new in firewalls
So you do not want anyone on the outside world to access that server.
Just put it on your network and make sure you deny all traffic from any user to x.x.x.32.
static (inside,outside) tcp x.x.x32 51241 x.x.x32 51241
access-list Outside_access_in permit tcp specific_outside_hosts host x.x.x.32 eq 51241
Let me know if this is what you are looking for?
Thanks for your help, I got the complete scenario now, I am having one public IP 162.x.x.33 255.255.255.248 which need to be convert in private IP with 172.x.x.25 and port 51241. I need to add this in ASA 5520
but the correct syntax was:
access-list Outside_access_in extended permit tcp any host x.x.x.33 eq 51241
static (inside,Outside) x.x.x.33 172.x.x.25 netmask 255.255.255.255