cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

1380
Views
0
Helpful
2
Replies
DAvelarNIC
Beginner

Block Inbound Port 80

Hello,

I have been trying to figure out how to block port 80 from outside my network to a specific server. I want to allow only port 8081 to be accessed. Currently when I setup an access rule to block http it blocks all access to the server from outside the network coming in. Is it possible to block only port 80 and allow 8081 or block all ports and allow 8081? This is on a Cisco ASA 5545. Thanks in advance for any help.

2 REPLIES 2
Rob Ingram
VIP Mentor

Hi,
Example below, should permit anybody on the internet to access the server on port 8081, this example uses static NAT. You'll need to amend the ip addresses and potentially the name of the interfaces (inside/outside) to fit your environment.

object network SERVER
 host 192.168.250.2
 nat (INSIDE,OUTSIDE) static 1.1.1.10 service 80 8081

access-list OUTSIDE_IN permit tcp any host 192.168.250.2 eq 80
access-group OUTSIDE_IN in interface OUTSIDE

 

HTH

Thank you for the response. I will give it a shot. Much appreciated.

Create
Recognize Your Peers
Content for Community-Ad