Solved: Re: Nat and Redirect several ports in one command

George-Sl · ‎03-30-2020

I was wondering if I can combine these two commands into only one command? if it's even possible

essentially I just need to redirect one port and everything else doesn't need redirection just being forwarded

object network PRTG_RDP
 host x.x.x.240
 nat (INSIDE,OUTSIDE) static y.y.y.133 service tcp 3389 52520

object network PRTG_SERVER
 host x.x.x.240
 Nat (INSIDE,OUTSIDE) after-auto source static y.y.y.133

tthx

Marius Gunnerud · ‎03-30-2020

If you are dead set on redirecting port 52520 then you must have two NAT rules. There is no way around this.

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

Marius Gunnerud · ‎03-30-2020

You could NAT all ports to the server.

object network PRTG_RDP
 host x.x.x.240
 nat (INSIDE,OUTSIDE) static y.y.y.133

Then all you need to do is to add access rules to allow traffic to the server on the desired ports.

--
Please remember to select a correct answer and rate helpful posts

George-Sl · ‎03-30-2020

But I put over there I was looking to redirect it only for one port(RDP)(from 52520 to RDP)

Marius Gunnerud · ‎03-30-2020

If you are dead set on redirecting port 52520 then you must have two NAT rules. There is no way around this.

--
Please remember to select a correct answer and rate helpful posts

Cristian Matei · ‎03-31-2020

Hi,

1. Your first NAT configuration, is correct, you're doing static PAT via object-NAT, for TCP port 3389. As long as your security-levels and configured ACL's allow this traffic, is gonna work.

2. Your second NAT configuration is NOT correct, you define an object but afterwards you configure static NAT via twice-NAT, which is globally configured, not under the object, and the statement is incomplete, you have only specified the real source, but not the mapped one.

What is it that you're trying to achieve?

Regards,

Cristian Matei.