Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
0
Helpful
1
Replies

Cisco ASA 5505 help with nat

larksys12
Level 1
Level 1

‎04-19-2011 09:49 AM - edited ‎03-11-2019 01:23 PM

I am remotely managing an ASA 5505 using ASDM.  I need help correcting a nat rule.  I need to allow external access from 1.1.1.1 TCP 1433 to inside 192.168.3.6.  I have an access rule source=1.1.1.1 dest=outside service=tcp 1433.  I have a nat rule original inside source=192.168.3.6 translated interface=outside use ip address 1.1.1.1 tcp=1433/1433.  I have a nat rule original outside source=1.1.1.1 translated interface=inside use ip address=192.168.3.6 tcp=1433/1433.  I have an ACL outside_access_in source=1.1.1.1 destination=outside service=tcp/1433.

Help.

Labels:
0 Helpful
1 Reply 1

brquinn
Level 1
Level 1

‎04-22-2011 10:36 AM

What version are you running? ASA v8.3 and later uses the real IP address in the interface ACLs, so the interface keyword won't work for a static translation. If you are running 8.3 or 8.4, try changing your  outside_access_in access-list destination from "interface outside" to 192.168.3.6. Otherwise, please post your configuration for review.

Thanks,

Brendan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card