Showing results for 
Search instead for 
Did you mean: 

ASA 5505 pppoe and NAT

Level 1
Level 1

Hi all.

I'm not new to firewall config but acutally is the first time I need to configure a PPPoE on a Cisco ASA.

IP and def-route will be received via DHCP but I already know which IP will be assigned. I will have only 1 IP public IP address.

The network is really basic: inside and outside, no DMZ. The use a server (internal) that will be published on the internet with different services.

Now my question(s) is pretty simple, does this configuration will work?

interface Ethernet0/0
 switchport access vlan 2
interface Ethernet0/2
interface Vlan1
 nameif inside
 security-level 100
 ip address
interface Vlan2
 nameif outside
 security-level 0
 pppoe client vpdn group internet
 ip address pppoe setroute


vpdn group internet request dialout pppoe
vpdn group internet localname id@domain.x
vpdn group internet ppp authentication chap
vpdn username id@domain.x password <mypass> store-local

dhcpd auto_config outside

object network Outside_IP
 host <my_PUBLIC_ip>
object network MyInternalServer
 nat (inside,outside) static Outside_IP
nat (inside,outside) after-auto source dynamic any interface

access-group inside_access_in in interface inside
access-group outside_access in interface outside

object-group service Services_myServices tcp
 port-object eq 26675
 port-object eq 3389
 port-object range 5678 5679
 port-object eq 5721
 port-object eq 990
 port-object eq 999
 port-object eq https

access-list inside_access_in extended permit object-group Permit_Surfing any log
access-list outside_access extended permit tcp any4 object MyInternalServer object-group Services_MyServices log

Thanks for your help

1 Reply 1

Level 3
Level 3



Maybe the reply is kind of late, but I dont see why it wouldn't work.







Remember to rate useful posts.

Review Cisco Networking for a $25 gift card