Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
579
Views
0
Helpful
2
Replies

ASA Configuration ..

richard_steiner
Level 1
Level 1

‎03-14-2015 02:50 AM - edited ‎03-11-2019 10:38 PM

Hi Guys,

I am new to cisco ASA firewall and need help configuring one ..I am trying to NAT 2 LAN IP addresses to Public IP addresses on ports 25 and 443.

LAN   IP

PUBLIC   IP

PORT

192.168.0.7

41.222.40.62

25, 443

192.168.0.8

41.222.40.37

25, 443

 

Attached is a copy of my config, I will greatly appreciate corrections where applicable.

Cheers,

Richard

Labels:
Preview file
5 KB
0 Helpful
2 Replies 2

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎03-14-2015 03:56 AM

Hi,

NAT statements:-

static (dmz,outside) tcp 41.222.40.37 https 192.168.0.8 https netmask 255.255.255.255
static (dmz,outside) tcp interface https 192.168.0.7 https netmask 255.255.255.255
static (dmz,outside) tcp 41.222.40.37 smtp 192.168.0.8 smtp netmask 255.255.255.255
static (dmz,outside) tcp interface smtp 192.168.0.7 smtp netmask 255.255.255.255

These rules look good.

ACL:-

access-list Out-Dmz permit tcp any interface outside eq 443

access-list Out-Dmz permit tcp any interface outside eq 25

access-list Out-Dmz permit tcp any host 41.222.40.37  eq 443

access-list Out-Dmz permit tcp any host 41.222.40.37  eq 25

access-group Out-Dmz in interface outside

Thanks and Regards,

Vibhor Amrodia

0 Helpful

richard_steiner
Level 1
Level 1
In response to Vibhor Amrodia

‎03-15-2015 01:05 AM

Hi Vibhor,

Are you advising that I update my access list with the above?

Thank you so much for your time.

~Richard

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card