Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
533
Views
0
Helpful
1
Replies

Cisco asa 5505 Version 9.2(3) static NAT

Parves Ataev
Level 1
Level 1

‎05-18-2015 07:00 AM - edited ‎03-11-2019 10:57 PM

Hi experts,

 

Trying to figure out what is the cleanest way of configuring multiple static NAT rules for the same host. Here are couple of rules configured on this box:

 

object network Server-EXCH1_port110
 host 192.168.50.13
object network Server-EXCH1_port143
 host 192.168.50.13

access-list inbound extended permit tcp any object Server-EXCH1_port110 eq pop3 
access-list inbound extended permit tcp any object Server-EXCH1_port143 eq imap4 

 

 nat (LAN,WAN) static interface service tcp pop3 pop3 
object network Server-EXCH1_port143
 nat (LAN,WAN) static interface service tcp imap4 imap4 
object network Server-EXCH1_port993

access-group inbound in interface WAN

 

Could you tell me what is the cleanest way of configuring multiple rulles for the same host behind the firewall.

 

Many Thanks

 

 

Labels:
0 Helpful
1 Reply 1

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎05-19-2015 12:00 AM

Hi,

I think this would be the best/recommended way to configure the Static PAT with same hosts as it is not recommended to configure this using the Manual NAT as this would create issues with the sequencing of Manual NAT and create issues.

Although , you would be able to re-use the Object name for a host.

It depends on the requirement and complexity of your NAT configuration.

Let me know if you have any queries.

Thanks and Regards,

Vibhor Amrodia

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card