11-21-2007 04:42 AM - edited 03-11-2019 04:33 AM
Please advice me for NAT on Cisco ASA5520.
i want to nat on asa for any user form internet can access SIP server via
203.145.22.121:6060 to 192.168.0.10:5060 and 192.168.0.11:5061
and from internet can access WEB server via 203.145.22.121:8888 to 192.168.1.10:8880
have any way i create loadbalance on asa5520 to user sip server
thank you so much.
11-21-2007 05:34 AM
for nat something like this:
sip:
static (inside,outside) tcp 203.145.22.121 6060 192.168.0.10 5060 netmask 255.255.255.255
don't really know but don't think loadbalancing is possible.
web:
static (inside,outside) tcp 203.145.22.121 8888 192.168.1.10 8880 netmask 255.255.255.255
the alcs:
access-list outside_access_in extended permit tcp any 203.145.22.121 255.255.255.255 eq 6060
access-list outside_access_in extended permit tcp any 203.145.22.121 255.255.255.255 eq 8888
the interface:
access-group outside_access_in in interface outside
hope thats correct and helps
regards,
juergen
11-21-2007 05:52 AM
Hi, double check your web static nat as 192.168.1.10 is in dmz interface not inside.
rgds
Jorge
11-21-2007 07:44 AM
right, should be (dmz,outside)
11-21-2007 10:38 AM
For your load balancing issue, can you do a cluster for the two servers so that there is one Virtual IP and one port to listen on/
Satya
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide