cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
662
Views
0
Helpful
1
Replies

PAT configuration on ASA 5512

kkwaskcisco
Level 1
Level 1

Hi;

 

How can I configure the PAT on my 5512 to allow smtp traffic coming from the internet?  I have one public ip only, but I need direct the smtp, http traffic to two different server internal.

1 Accepted Solution

Accepted Solutions

Vibhor Amrodia
Cisco Employee
Cisco Employee

Hi,

It should be simple like this:-

Server 1 :- Private Ip1

Server 1 :- Private Ip2

Public IP

object network obj-Server1

host Private Ip1

nat (inside,outside) static Public IP service tcp smtp smtp

object network obj-Server2

host Private Ip2

nat (inside,outside) static Public IP service tcp http http

Also , remember to allow these ports in the ACL on the outside incoming traffic ACL.

Something like this:-

access-list Out-IN permit tcp any host Private Ip1 eq smtp

Thanks and Regards,

Vibhor Amrodia

 

View solution in original post

1 Reply 1

Vibhor Amrodia
Cisco Employee
Cisco Employee

Hi,

It should be simple like this:-

Server 1 :- Private Ip1

Server 1 :- Private Ip2

Public IP

object network obj-Server1

host Private Ip1

nat (inside,outside) static Public IP service tcp smtp smtp

object network obj-Server2

host Private Ip2

nat (inside,outside) static Public IP service tcp http http

Also , remember to allow these ports in the ACL on the outside incoming traffic ACL.

Something like this:-

access-list Out-IN permit tcp any host Private Ip1 eq smtp

Thanks and Regards,

Vibhor Amrodia

 

Review Cisco Networking for a $25 gift card