Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1066
Views
0
Helpful
1
Replies

I have local website behind FP1010 FTD and its not working

HaniAbuelkhair39121
Level 1
Level 1

‎02-01-2021 04:03 PM

I have local website behind FP1010 FTD and its not working

when i started the RAVPN was using the legal IP with port 443, and this server is pointed to the same legal IP and for sure use the same port 443

so when you open the website the vpn page to download the anyconnect was there instead of the local site.

I upgraded my FP1010 FTD to 6.7 in order to change the RAVPN port from 443 to something else which i did already and changed the RAVPN to port 4443 

Tested the VPN is working now fine with the new port 

But the site is not working till now 

Anything else i have to do to make it work ?

0 Helpful
1 Reply 1

Dinesh Moudgil
Cisco Employee
Cisco Employee

‎02-01-2021 10:37 PM

Hi HaniAbuelkhair39121,

 

You will need:


1. Port translation: NAT statement which translates the FP1010's outside interface port 443 to internal server on the same port.
For logic, please check "Port Redirection (Forwarding) with Static" from https://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/118996-config-asa-00.html#anc8
For corresponding configuration steps, please check
https://www.cisco.com/c/en/us/td/docs/security/firepower/670/configuration/guide/fpmc-config-guide-v67/network_address_translation_nat_for_firepower_threat_defense.html#task_3FA99245557D4DA4860FE90BCEF771A1 

2. Access-list on egress interface to allow the traffic destined to the server from the internet.

 

Thanks,

Dinesh Moudgil

 

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card