HiDid you find a solution for

Rob Royse · ‎07-05-2014

Greetings all,

I am having trouble crafting the proper commands to successfully expose a specific internal host to the internet on a range of ports.

I thought I had it working correctly after I upgraded to 9.2(1), but I think there must have been a bug or two with that release, because I seem to have lost my config and can't get it back, nor do I remember the commands I used.

I have a single, public (dynamic) IP address for the 5505, and I have done the NAT/ACL for a different internal host, but it was using a single port.

For this host, it is 192.168.1.24 and I need to expose TCP and UDP on ports 8082 through 8083. The range seems to be causing me a bit of trouble. When doing the rules, I don't need to change the port numbers, the same range internal will also be the external range.

Could someone please give me the proper NAT and ACL statements to use? I am a little confused on the NAT/PAT and which to use when.

Thanks in advance!

-Rob

Yadhu Tony · ‎07-06-2014

Hi,

This may help : https://supportforums.cisco.com/document/132066/asa-nat-83-nat-operation-and-configuration-format-cli

Or let us know if you face any issues after reading the above.

Best Regards,

Yadhu

Regards,
Tony

http://yadhutony.blogspot.com

jesper_petersen · ‎11-14-2014

Hi

Did you find a solution for your problem? I can't wrap my head around this as well.

If you got a working solution, I'd be grateful if you'd share it :)

Port forward w/ASA 5505 running 9.2(2) ?