Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
280
Views
0
Helpful
1
Replies

ASA Single Static IP port fowarding for two internal IP's

ericw
Level 1
Level 1

‎02-20-2015 08:32 AM - edited ‎03-11-2019 10:31 PM

Hello,

Have inherited an ASA5510 and need some assistance.  Just had an NEC VOIP phone system installed and we have a single IP phone that is going to a remote site that needs UDP access through the ASA public IP > a pair of internal IP's based on port.  I'm not familiar how to do this.  Here is what I have so far:

object network nec1100_cpu
 host 192.168.0.201

obect network nec1100_cpu_out
 host <public IP>

object-group service nec1100_cpu_ports
 description Inbound ports needed for VOIP Registration
 service-object udp destination eq 5060
 service-object udp destination range 5080 5081

access-list outside_access_in extended permit object-group nec11_cpu_ports any object nec1100_cpu 

object network nec1100_cpu
 nat (inside,outside) static <public IP>

object network network nec1100_cpu_out
 nat (outside,inside) static 192.168.0.201

 

Now I need to add UDP forwarding for 10020-10083 from the same <public IP> to internal IP 192.168.0.202.  How to accomplish this?

Thanks in advance!

Labels:
0 Helpful
1 Reply 1

rizwanr74
Level 7
Level 7

‎02-20-2015 12:26 PM

object network nec1100_cpu
 host 192.168.0.201
nat (inside,outside) static my-public-IP service udp 5060, 5080 5081

 

 

Or you can also do this in the same way.

 

object network nec1100_cpu
 host 192.168.0.201
nat (inside,outside) static my-public-IP 

 

Control udp port via the ACL on the outside interface.

 

Hope this helps.

thanks

Rizwan Rafeek

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card