Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
5
Helpful
1
Replies

NAT Port Translation HELP!

Scott Danton
Level 1
Level 1

‎03-06-2013 07:13 AM - edited ‎03-11-2019 06:10 PM

I have a server on the inside of my network (with a internet Routable IP).  It has been requested to me that people from the internet access port 80, and that is translated at the firewall to port 7080.  I have set up a temp Access rule to allow access to 7080 from the outside and it is accessable.  I am not sure what I am doing wrong, but I am not able to get the translation from 80 to 7080 to work.  Please advise.

Scott

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎03-06-2013 07:23 AM

Hi,

I guess your setup would be abit diffrent from the typical situation since you have an actual public IP address on the host itself but still need to manipulate the ports towards Internet.

The basic configuration format (that I use) for Port Forward / Static PAT is the following

object network STATIC

host

nat (inside,outside) static service tcp

In this case I guess the =

access-list OUTSIDE-IN permit tcp any object STATIC eq

You can confirm operation with

packet-tracer input outside tcp 1.2.3.4 1234

One optional way of doing this regarding NAT might be

object service REAL-PORT

service tcp source eq

object service MAPPED-PORT

service tcp source eq

object network IP-ADDRESS

host

nat (inside,outside) source static IP-ADDRESS IP-ADDRESS service REAL-PORT MAPPED-PORT

Hope this helps

- Jouni

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card