Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
659
Views
0
Helpful
3
Replies

Nat different sort of traffic from outside to different servers on inside

Go to solution
mikaeledren
Level 1
Level 1

‎05-18-2011 04:14 AM - edited ‎03-11-2019 01:34 PM

Hello,

I am trying to set up a Cisco 5505 ASA for the first time. After lot of googling and surfing on the Cisco Site I have managed to set the router/firewall up as follow: An outside interface with a public IP and an insdie interface with a private IP 192.168.186.0/24.

Everyone on the LAN can access internet. SMTP (25) and HTTPS (443) traffic is redirected from outside to a server on my LAN (inside.)

Problem/Question: I have not been able to redirect PPTP (1723) traffic to a different server on the LAN. whatever i am trying the 5505 tells me that it is in conflict with the existing nat rule for SMTP/HTTPS.

How can I redirect different sort of traffic from outside to different servers on the inside?

Labels:
Preview file
12 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
varrao
Level 10
Level 10

‎05-18-2011 04:33 AM

Hi Mike,

To redirect traffic destined for different ports, you can use static port forwarding, in which instead of the complete Public IP address you just utilize the specific port on that IP, please find an example below:

static (inside,outside) tcp interface 25 192.168.24.20 25   (for smtp services)

As far as PPTP setup is concerned, firewall wou;ld just pass-through the PPTP traffic, pleasefind a doc below for PPTP configuration:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml

Here is a doc for NAT/PAT on ASA:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008046f31a.shtml

Command reference:

http://www.cisco.com/en/US/customer/docs/security/asa/asa82/command/reference/s8.html#wp1512466

Also please let me know the ASA software version that you are using, because there is a change in NAT from ASA 8.3 onwards.

Hope this helps.

Thanks,

Varun

Thanks,
Varun Rao

View solution in original post

0 Helpful
3 Replies 3

Go to solution
varrao
Level 10
Level 10

‎05-18-2011 04:33 AM

Hi Mike,

To redirect traffic destined for different ports, you can use static port forwarding, in which instead of the complete Public IP address you just utilize the specific port on that IP, please find an example below:

static (inside,outside) tcp interface 25 192.168.24.20 25   (for smtp services)

As far as PPTP setup is concerned, firewall wou;ld just pass-through the PPTP traffic, pleasefind a doc below for PPTP configuration:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml

Here is a doc for NAT/PAT on ASA:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008046f31a.shtml

Command reference:

http://www.cisco.com/en/US/customer/docs/security/asa/asa82/command/reference/s8.html#wp1512466

Also please let me know the ASA software version that you are using, because there is a change in NAT from ASA 8.3 onwards.

Hope this helps.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful

Go to solution
mikaeledren
Level 1
Level 1
In response to varrao

‎05-18-2011 04:46 AM

Thank you for rapid answer.

I will check up the software vesion an let you know. I also will try your suggestion and let you know.

0 Helpful

Go to solution
mikaeledren
Level 1
Level 1
In response to mikaeledren

‎05-18-2011 01:03 PM

I have everything up and going thanks to your assistens.

Thank you very muck

Regards

Mikael

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card