05-29-2020 12:14 PM
I have a dmz server, listening on port 21, I want this server to be accessible from internet.
Here are my options:
1)
nat (dmz,outside) source static ftp_10.20.30.40 x.x.x.x(publicIP) service FTP_21 FTP_21
^^ Does NOT work.
=============================================================
2)
object network ftp_10.20.30.40
host 10.20.30.40
nat (dmz,outside) static x.x.x.x(PublicIP) service tcp ftp ftp
^^^ Works.
What is wrong with 1??? I am clueless. I have exact same NAT statement for another server (option 3) listening on a different port and it works.
3) nat (dmz,outside) source static 10.20.30.41 y.y.y.y(PublicIP) service 2222 2222
Solved! Go to Solution.
05-29-2020 12:55 PM
05-30-2020 01:32 PM
05-29-2020 12:55 PM
05-30-2020 03:48 AM
Thank you.
I was using destination ports, but should it not be destination port 21 and not source? How does this work?
05-30-2020 01:32 PM
06-08-2020 03:34 AM
Thank you for the explanation :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide