Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
610
Views
0
Helpful
5
Replies

Overlaping Static NAT Rule

Go to solution
Haider Malik
Level 1
Level 1

‎01-16-2014 10:14 AM - edited ‎03-11-2019 08:31 PM

Hello All . I have an issue while creating NAT rule i am having the Error Overlaping Static NAT Rule

Here is the details

I have already configured static NAT for RDP 3389 Traffic to my host 192.168.1.128 which is working fine. (so i can RDP from outside )

However now i want 9090 port to be translated to 3389 for another host 192.168.1.13 (so i can put 9090 port when i do the RDP to reach the .13 server )

i am receving the Error "

Overlaping Static NAT Rule "

I dont understand how can it be overpaped ?

(see screen shot )

Please help how can i have another Rule with PAT to the Translated port in the ASA ?

Labels:
Preview file
118 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni
In response to Haider Malik

‎01-17-2014 04:39 AM

Hi,

Seems to me that you have the ports the wrong way around in the new configuration.

Your Original port is TCP/9090 which would mean that this would be the actual local port on the host. And you have set the Translated port as TCP/3389 which means that this is the public/mapped port.

Considering you have a Static PAT (Port Forward) already configure for port TCP/3389 this naturally overlaps.

So in the configuration window where you define the ports switch their places and it should be fine.

Hope this helps

- Jouni

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Haider Malik
Level 1
Level 1

‎01-17-2014 04:34 AM

Hello any help please ?

0 Helpful

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni
In response to Haider Malik

‎01-17-2014 04:39 AM

Hi,

Seems to me that you have the ports the wrong way around in the new configuration.

Your Original port is TCP/9090 which would mean that this would be the actual local port on the host. And you have set the Translated port as TCP/3389 which means that this is the public/mapped port.

Considering you have a Static PAT (Port Forward) already configure for port TCP/3389 this naturally overlaps.

So in the configuration window where you define the ports switch their places and it should be fine.

Hope this helps

- Jouni

0 Helpful

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni
In response to Haider Malik

‎01-17-2014 09:05 AM

Hi,

Did you get this working by changing the ports?

- Jouni

0 Helpful

Go to solution
Haider Malik
Level 1
Level 1
In response to Jouni Forss

‎01-17-2014 09:08 AM

Thank you i got your point however i have another issue for the moment

i am unable to login to the device using ASDM . i have posted

https://supportforums.cisco.com/thread/2261981?tstart=0

0 Helpful

Go to solution
Haider Malik
Level 1
Level 1
In response to Jouni Forss

‎01-17-2014 10:47 AM

can you let me kow if this below correct meanwhile i cant get the ASDM access .

access-list 100 extended permit tcp any any eq 9090

static (inside,outside) tcp interface 9090 192.168.1.13 3389 netmask 255.255.255.255

access-list outside_access_in extended permit tcp any interface outside eq 9090

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card