Solved: Hi,

dalibor.bosic11 · ‎02-09-2016

Hi

I have borrowed ASA 5515x from my company temporary to do some learning and so far everything is working inside. All ports that I open work ok but nothing will communicate from outside.

I have PC whose address is 192.168.1.12 and public IP that is 174.115.141.85 from Rogers. For all my internal hosts there is internet access and all rules apply internally i forward ports 80 443 and everything is working internally.

But when I apply NAT rule from outside and access lists to allow port 3389 to go to this PC nothing will work.

Anyone has an idea how to enable port 3389 from outside interface to this PC. I would prefer ASDM configuration (ASDM 7.5.153 and ASA 9.4) since this is relatively new to me.

I am wondering that every port i open inside works perfectly but nothing will communicate from outside.

I was wondering whether my ISP which is Rogers would block some communications but it is less likely that it is the case.

here is the word document how I set it up and would like someone's opinion if this is setup correctly or I am missing something

kvaldelo · ‎02-10-2016

Hi,

For example from the outside to inside host a NAT can look like:

object network obj-192.168.1.12

host 192.168.1.12

nat(inside,outside) static 174.115.141.85 service 3389 3389

exit

!

access-list outside permit tcp host any host 192.168.1.12 eq 3389

access-group outside in interface outside

!

ASDM configuration:

https://supportforums.cisco.com/video/11929221/asa-enabling-port-forwarding-asdm-versions-83-and-84

View solution in original post

kvaldelo · ‎02-10-2016

Hi,