Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
679
Views
0
Helpful
1
Replies

NAT and perimeter firewall

Network Pro
Level 1
Level 1

‎02-10-2012 02:12 AM - edited ‎03-11-2019 03:27 PM

Hi,

I am trying to access my work network on ports 5246 and ports 5247 but cant seem to.

this is the setup

AP (5246, 5247) -----Internet-------ISP router---permiter firewall----internal firewall

I have nat'd a static ip on my firewall to a internal address and nat'd the internal address to the internal address on the Internal firewall. so

66.11.22.33 Nat'd 192.168.10.1  ----Permter firewall

192.168.10.1 Nat'd 192.168.10.1 --- Internal Firewall

i have a statc route of 192.168.10.x subnet to the inside of hte perimiter (this is directlu connected to the internal firewall). I have ACL to allow 5246 and 5247 on both internal and perimeter firewall.

when i do sh nat on permiter firewall, i can see untranslated hits on permiter firewall for the ports 5246 (which is what its supposed to use) but translated hits is 0.

This setup has been used for a another port and that seems to work fine

so any thoughs on this ?

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎02-10-2012 09:24 AM

Hello,

Is this an ASA?

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card