12-24-2018 11:33 PM - edited 02-21-2020 08:36 AM
Hi I have Cisco 5525 and i have a public IP address which is attached to outside interface of cisco ASA, and i want to configure an FTP server which is behind NAT and i want it to be accessible from outside. below is IP information
-> Outside Public IP 213.55.96.166
-> Inside LAN 172.16.105.0 255.255.255.0
> FTP Server IP 172.16.105.11
12-28-2018 02:07 AM
As usual there are multiple options to do that. I would configure an object-NAT with port forwarding on TCP/21. In addition to that, the outside ACL has to allow tcp/21 traffic to the internal IP address of the FTP server.
12-28-2018 03:48 AM - edited 12-28-2018 04:05 AM
i guess here you want to get access outside world to your firewall outside public ip addres if you below are the configuration
object network FTP-SERVER
host 172.31.0.11
nat (inside,outside) static interface service tcp FTP FTP
!
access-list inbound permit tcp any object FTP_Server eq ftp
!
access-group inbound in interface outside
please do not forget to rate if i was helpful
!
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
===================
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide