Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
301
Views
0
Helpful
2
Replies

Internet access

Shibu1978
Level 1
Level 1

‎04-20-2013 11:33 PM - edited ‎03-11-2019 06:32 PM

Hi,

Port forwarding done to a DMZ located server on the cisco ASA 5520. Now this host cannot browse but allowed outside to inside access is possible.

Here is the configs done for this.

Inbound ACL

===========

access-list outside_access_in extended permit tcp any host 94.20.*.* eq ftp

access-list outside_access_in extended permit tcp any host 94.20.*.* eq ftp-data

access-list outside_access_in extended permit tcp any host 94.20.*.* eq www

Inbound static nat

==================

static (DMZ,OUTSIDE) tcp 94.20.*.* ftp-data FTPserver ftp-data netmask 255.255.255.255

static (DMZ,OUTSIDE) tcp 94.20.*.* ftp FTPserver ftp netmask 255.255.255.255

static (DMZ,OUTSIDE) tcp 94.20.*.* www FTPserver www netmask 255.255.255.255

Is there anyway i can give this system to browse internet? may be through the natted IP ( 94.20.*.*)

Thanks

Labels:
0 Helpful
2 Replies 2

patrick.preuss
Level 1
Level 1

‎04-21-2013 01:30 AM

Hi you can use the packet-tracer command to have a look what the ASA is thinking might give you an idea.

Hth

Sent from Cisco Technical Support Android App

0 Helpful

Shibu1978
Level 1
Level 1
In response to patrick.preuss

‎04-21-2013 04:15 AM

Browsing issue has been resolved by Pating the outbound access from this host.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card