ASA port redirection with outside interface

pemasirid · ‎10-29-2021

Hi,

I configured port redirection with outside interface as below and allow tcp 4433 on outside interface.

nat (inside,outside) source static <inside-serv> interface service tcp_4433 tcp_4433

I could see packets are arriving on my outside interface with the port 4433 but NO response from internal server to outside. when I did the packet tracer both from outside to inside, i could see that it hits the correct NAT rule. But need to figure out why it still not working (no response from server to client). Appreciate it if someone can shed some light on this issue. thanks.

balaji.bandi · ‎10-29-2021

After NAT do you have ACL to allow in traffic example :

access-list inbound permit tcp any object <inside-serv> eq tcp_4433

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

paul driver · ‎10-30-2021

Hello

I would agree with @balaji.bandi it possible due to acl restriction and applying that acl to the outside interface:

access-list 100 extended permit tcp any object <xxxx> eq 4433

access-group 100 in interface outside

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

Mohammed al Baqari · ‎11-01-2021

Hi,

Enable term mon on ASA and initiate again to see what is happening.

**** please remember to rate useful posts