09-04-2010 11:21 AM - edited 03-11-2019 11:34 AM
We have just recently installed a Cisco ASA 5510 firewall and have got the configuration all up and running, however due to current project we are running, we have allocated a single public ip address for a third party company to tunnel in on that address to access our SQL server which is configured to be working fine, however due to our lack of public ip address,o we would also want the third party company to gain access to our LDAP server, Is it possible to for one public ip address to tunnel into two separate servers?
09-04-2010 05:10 PM
Hi,
You can share a single public IP with several internal IPs (if they use different TCP/UDP ports).
i.e
static (in,out) tcp 200.1.1.1 80 10.1.1.1 80
static (in,out) tcp 200.1.1.1 25 10.1.1.2 25
static (in,out) tcp 200.1.1.1 21 10.1.1.3 21
In the example above you have three internal servers (web, email and ftp) and they all share the same public IP.
Federico.
09-04-2010 05:57 PM
Hey Federico,
Yes this is possible and this technique is called Port forwarding.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00804708b4.shtml
Cheers
Ankur Bajaj
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: